R3303-HP HSR6800 Routers Security Configuration Guide
183
# Set the NTK mode of the port to ntkonly.
[Router-GigabitEthernet3/0/1] port-security ntk-mode ntkonly
[Router-GigabitEthernet3/0/1] quit
Verifying the configuration
# Display the port security configuration.
[Router] display port-security interface gigabitethernet 3/0/1
Equipment port-security is enabled
Intrusion trap is enabled
AutoLearn aging time is 30 minutes
Disableport Timeout: 30s
OUI value:
GigabitEthernet3/0/1 is link-up
Port mode is macAddressElseUserLoginSecure
NeedToKnow mode is NeedToKnowOnly
Intrusion Protection mode is NoAction
Max MAC address number is 64
Stored MAC address number is 0
Authorization is permitted
Security MAC address learning mode is sticky
Security MAC address aging type is absolute
# Display MAC authentication information.
[Router] display mac-authentication interface gigabitethernet 3/0/1
MAC address authentication is enabled.
User name format is MAC address in lowercase,like xx-xx-xx-xx-xx-xx
Fixed username:mac
Fixed password:not configured
Offline detect period is 300s
Quiet period is 60s
Server response timeout value is 100s
The max allowed user number is 2048 per slot
Current user number amounts to 3
Current domain is sun
Silent MAC User info:
MAC Addr From Port Port Index
GigabitEthernet3/0/1 is link-up
MAC address authentication is enabled
Authenticate success: 3, failed: 7
Max number of on-line users is 1024
Current online user number is 3
MAC ADDR Authenticate state Auth Index
1234-0300-0011 MAC_AUTHENTICATOR_SUCCESS 13
1234-0300-0012 MAC_AUTHENTICATOR_SUCCESS 14
1234-0300-0013 MAC_AUTHENTICATOR_SUCCESS 15