Before Campus Manager can use port security to disable a MAC address,
the Switch must be configured for port security.
Example configuration:
The switch is a Cisco 2950, with multiple vlans, VLAN ID's 1,2,3. The
clients that will potentially be disabled are all connecting via VLAN 2.
VLAN 2 is on ports 6-18 and port 18 is a port where clients cannot
connect (i.e a printer may be connected there, or the port is reserved).
For Campus Manager to work, the port on VLAN 2 where clients cannot
connect, port 18 must be enabled as a secure port. The CLI commands to
do this are:
enable
configure terminal
interface fastEthernet 0/18
switch mode access
switchport port-security
switchport port-security maximum 120
end
You can verify that the port is secure with the following command
show port-security
Secure Port MaxSecureAddr CurrentAddr SecurityViolation Security
Action
(Count) (Count) (Count)
-------------------------------------------------------------------------------
Fa0/18 120 0 0 Shutdown
-------------------------------------------------------------------------------
Total Addresses in System : 0
Max Addresses limit in System : 1024
Note: The switch must also be a member of the "Physical Address
Filtering" Group within Campus Manager.
Once this is complete users can disable clients connected to the switch
on VLAN 2.
Received on Tue Nov 04 2003 - 21:07:59 EST
This archive was generated by hypermail 2.2.0 : Thu Jan 29 2009 - 14:00:03 EST