[edit ethernet-switching-options secure-access-port]
user@switch#
set interface all allowed-mac 00:05:85:3A:82:80
user@switch#
set interface all allowed-mac 00:05:85:3A:82:81
user@switch#
set interface all allowed-mac 00:05:85:3A:82:83
5.
Limit the number of times a MAC address can move from its original interface in one
second—for example, set a MAC move limit of
5
with an action of
drop
if the limit is
exceeded:
•
On a single VLAN (here, the VLAN is
employee-vlan
):
[edit ethernet-switching-options secure-access-port]
user@switch#
set vlan employee–vlan
mac-move-limit
5 action drop
•
On all VLANs:
[edit ethernet-switching-options secure-access-port]
user@switch#
set vlan all mac–move-limit 5 action drop
6.
Configure a trusted DHCP server on an interface (here, the interface is
ge-0/0/8
):
[edit ethernet-switching-options secure-access port]
user@switch#
set interface ge–0/0/8
dhcp-trusted
Related
Documentation
Configuring Port Security (J-Web Procedure) on page 2907
•
•
Configuring Autorecovery From the Disabled State on Secure or Storm Control Interfaces
(CLI Procedure) on page 2796
•
Example: Configuring Port Security, with DHCP Snooping, DAI, MAC Limiting, and MAC
Move Limiting, on an EX Series Switch on page 2849
•
Example: Configuring DHCP Snooping, DAI , and MAC Limiting on an EX Series Switch
with Access to a DHCP Server Through a Second Switch on page 2873
•
Monitoring Port Security on page 2933
•
Port Security for EX Series Switches Overview on page 2825
Configuring Port Security (J-Web Procedure)
To configure port security on an EX Series switch using the J-Web interface:
1.
Select
Configure
>
Security
>
Port Security
.
The
VLAN List
table lists all the VLAN names, VLAN identifiers, port members, and
port security VLAN features.
The
Interface List
table lists all the ports and indicates whether security features have
been enabled on the ports.
2907
Copyright © 2010, Juniper Networks, Inc.
Chapter 95: Configuring Port Security
Summary of Contents for JUNOS OS 10.3 - SOFTWARE
Page 325: ...CHAPTER 17 Operational Mode Commands for System Setup 229 Copyright 2010 Juniper Networks Inc ...
Page 1323: ...CHAPTER 56 Operational Mode Commands for Interfaces 1227 Copyright 2010 Juniper Networks Inc ...
Page 2841: ...CHAPTER 86 Operational Commands for 802 1X 2745 Copyright 2010 Juniper Networks Inc ...
Page 3367: ...CHAPTER 113 Operational Mode Commands for CoS 3271 Copyright 2010 Juniper Networks Inc ...
Page 3435: ...CHAPTER 120 Operational Mode Commands for PoE 3339 Copyright 2010 Juniper Networks Inc ...
Page 3529: ...CHAPTER 126 Operational Mode Commands for MPLS 3433 Copyright 2010 Juniper Networks Inc ...