Manualshelf

R3303-HP HSR6800 Routers Security Command Reference

ManualsBrandsHP ManualsNetwork HardwareHP HSR68xx Configure-to-Order Router Solution
191192193194195196197198199200
182
Field Descri
p
tion
AutoLearn aging time
Secure MAC aging timer. The timer applies to sticky or dynamic secure MAC
addresses.
Disableport Timeout Silence timeout period of the port that receives illegal packets, in seconds.
OUI value List of OUI values allowed.
Port mode
Port security mode:
noRestrictions.
autoLearn.
macAddressWithRadius.
macAddressElseUserLoginSecure.
macAddressElseUserLoginSecureExt.
secure.
userLogin.
userLoginSecure.
userLoginSecureExt.
macAddressOrUserLoginSecure.
macAddressOrUserLoginSecureExt.
userLoginWithOUI.
NeedToKnow mode
Need to know (NTK) mode:
NeedToKnowOnlyAllows only unicast packets with authenticated
destination MAC addresses.
NeedToKnowWithBroadcastAllows only unicast packets and broadcasts
with authenticated destination MAC addresses.
NeedToKnowWithMulticastAllows unicast packets, multicasts and
broadcasts with authenticated destination MAC addresses.
Intrusion mode
Intrusion protection action mode:
BlockMacAddressAdds the source MAC address of the illegal packet to
the blocked MAC address list.
DisablePortShuts down the port that receives illegal packets permanently.
DisablePortTemporarily—Shuts down the port that receives illegal packets
for some time.
NoActionPerforms no intrusion protection.
Max MAC address number Maximum number of MAC addresses that port security allows on the port.
Stored MAC address
number
Number of MAC addresses stored.
Authorization
Whether the authorization information from the server is ignored or not:
permittedAuthorization information from the RADIUS server takes effect.
ignoredAuthorization information from the RADIUS server does not take
effect.
Security MAC address
learning mode
Secure MAC address learning mode:
sticky—Learn MAC addresses as sticky secure MAC addresses.
dynamic—Learns MAC addresses as dynamic secure MAC addresses.
Security MAC address
aging type
Secure MAC address aging type:
absolute—Timer aging.
inactivity—Inactivity aging.