Configuring Port Security Aging - Cisco 4500M Software Manual
Software guide
Hide thumbs
Also See for 4500M:
- Command reference manual (578 pages) ,
- Hardware installation and maintenance manual (143 pages) ,
- Upgrade manual (24 pages)
Table of Contents
Advertisement
Configuring Port Security
Switch#show port address
Secure Mac Address Table
------------------------------------------------------------------------
Vlan
----
1
1
1
------------------------------------------------------------------------
Total Addresses in System (excluding one mac per port)
Max Addresses limit in System (excluding one mac per port) : 1024
Configuring Port Security Aging
You can use port security aging to set the aging time and aging type for all secure addresses on a port.
Use this feature to remove and add PCs on a secure port without manually deleting the existing secure
MAC addresses while still limiting the number of secure addresses on a port.
To configure port security aging, perform this task:
Command
Step 1
Switch(config)# interface interface_id
Step 2
Switch(config-if)# switchport port-security
[ aging {static | time aging_time | type
{absolute | inactivity} ]
Step 3
Switch(config-if)# end
Step 4
Switch# show port security [interface
interface_id ] [address]
To disable port security aging for all secure addresses on a port, use the no switchport port-security
aging time interface configuration command.
This example shows how to set the aging time as 2 hours for the secure addresses on the Fast Ethernet
interface 5/1:
Switch(config)# interface fastethernet 5/1
Switch(config-if)# switchport port-security aging time 120
Software Configuration Guide—Release 12.2(25)EW
32-6
Mac Address
Type
-----------
----
0000.0000.0001
SecureSticky
0000.0000.0002
SecureSticky
0000.0000.0003
SecureConfigured
Chapter 32
Ports
Remaining Age
-----
-------------
Fa5/1
Fa5/1
Fa5/1
: 2
Purpose
Enters interface configuration mode for the port on which
you want to enable port security aging.
Sets the aging time for the secure port.
The static keyword enables aging for statically
configured secure addresses on this port.
The time aging_time keyword specifies the aging time for
this port. Valid range for aging_time is from 0 to 1440
minutes. If the time is equal to 0, aging is disabled for this
port.
The type keyword sets the aging type as absolute or
inactive. For absolute aging, all the secure addresses on
this port ago out exactly after the time (minutes) specified
and are removed from the secure address list. For inactive
aging, the secure addresses on this port ago out only if
there is no data traffic from the secure source address for
the specified time period.
Returns to privileged EXEC mode.
Verifies your entries.
Configuring Port Security
(mins)
-
-
-
OL-6696-01
Advertisement
Table of Contents
