R2511-HP MSR Router Series Security Command Reference(V5)
177
Examples
# Configure the intrusion protection policy as disabling the port temporarily whenever it receives an
illegal frame and set the silence period to 30 seconds.
<Sysname> system-view
[Sysname] port-security timer disableport 30
[Sysname] interface gigabitethernet 1/1
[Sysname-GigabitEthernet1/1] port-security intrusion-mode disableport-temporarily
Related commands
display port-security
port-security trap
Use port-security trap to enable port security traps.
Use undo port-security trap to disable port security traps.
Syntax
port-security trap { addresslearned | dot1xlogfailure | dot1xlogoff | dot1xlogon | intrusion |
ralmlogfailure | ralmlogoff | ralmlogon }
undo port-security trap { addresslearned | dot1xlogfailure | dot1xlogoff | dot1xlogon | intrusion |
ralmlogfailure | ralmlogoff | ralmlogon }
Default
Port security traps are disabled.
Views
System view
Default command level
2: System level
Parameters
addresslearned: Enables MAC address learning traps. The port security module sends traps when a port
learns a new MAC address.
dot1xlogfailure: Enables 802.1X authentication failure traps. The port security module sends traps when
an 802.1X authentication fails.
dot1xlogon: Enables 802.1X authentication success traps. The port security module sends traps when an
802.1X authentication is passed.
dot1xlogoff: Enables 802.1X user logoff event traps. The port security module sends traps when an
802.1X user is logged off.
intrusion: Enables intrusion traps. The port security module sends traps when it detects illegal frames.
ralmlogfailure: Enables MAC authentication failure traps. The port security module sends traps when a
MAC authentication fails.
ralmlogoff: Enables MAC authentication user logoff traps. The port security module sends traps when a
MAC authentication user is logged off.
ralmlogon: Enables MAC authentication success traps. The port security module sends traps when a
MAC authentication is passed.