实验目的:掌握端口安全的配置方法。 实验过程:
一、打开SecureCRT Portable软件,并连接SW1,SW2 二、给SW1配置port-security。 SW1>en SW1#config t Enter configuration commands, one per line. End with CNTL/Z. SW1(config)#hostname SW1 SW1(config)#int e0/0 SW1(config-if)#sw mode access //设置端口为access模式 SW1(config-if)#sw port-security //开启端口安全 SW1(config-if)#sw port-security maximum 3 //设置最大MAC地址数 SW1(config-if)#sw port-security violation shutdown //对端口做的操作 SW1(config-if)#end 三、对SW2配置port-security。 SW2>en SW2#config t Enter configuration commands, one per line. End with CNTL/Z. SW2(config)#hostname SW2 SW2(config)#int e0/0 SW2(config-if)#sw mode access SW2(config-if)#sw port-security SW2(config-if)#sw port-security maximum 4 SW2(config-if)#sw port-security violation protect Switch(config-if)#end *Jan 14 09:45:43.323: %SYS-5-CONFIG_I: Configured from console by console SW2# 四、查看SW1,SW2的port-security SW1#show port-security Secure Port MaxSecureAddr CurrentAddr SecurityViolation Security Action (Count) (Count) (Count) --------------------------------------------------------------------------- Et0/0 3 0 0 Shutdown --------------------------------------------------------------------------- Total Addresses in System (excluding one mac per port) : 0 Max Addresses limit in System (excluding one mac per port) : 4096 SW1# SW2#show port-security Secure Port MaxSecureAddr CurrentAddr SecurityViolation Security Action (Count) (Count) (Count) --------------------------------------------------------------------------- Et0/0 4 0 0 Protect --------------------------------------------------------------------------- Total Addresses in System (excluding one mac per port) : 0 Max Addresses limit in System (excluding one mac per port) : 4096 SW2#
因篇幅问题不能全部显示,请点此查看更多更全内容