NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
port security configuration
Good morning,
I am trying to configure the ports of the switch (GSM7224P), my goal is to enable port security so that more than one MAC address is not learned on each specific port.
My problem arises when, despite having carried out all the steps (I presume) exact, when I connect two different devices (first one and then the other), both safely send packets over the network every time they are connected and the port does not block. I have never configured a netgear switch being in the port security field having experience with Cisco or HP.
The steps taken are these:
- Port security> Port administration> Enable
- Port security> interface configuration> security mode (enable) - Max allowed dynamically learned MAC (1) - Max allowed statically locked MAC (48) - violation trap (enable).
Thanks in advance.
2 Replies
Welcome to the community! :)
Kindly try the steps below on how to configure Port Security based on MAC Address on the M4100-24G-POE+ (GSM7224P) switch:
1. On the web-GUI of the GSM7224P switch, go to Switching > Address Table > Advanced > Static MAC Address.
2. Add a static MAC address entry.
a. Use Interface to select the physical interface or LAG.
b. Use the Static MAC Address field to input the MAC address
c. Select the VLAN ID associated with the MAC address.
d. To add a new static MAC address to the switch, click the ADD button.
e. To delete a static MAC address from the switch, click the DELETE button.
3. On the web-GUI of the GSM7224P switch, go to Security > Traffic Control > Port Security > Port Administration..
4. Select Enable on Port Security Mode then click Apply.
5. On the web-GUI of the GSM7224P switch, go to Security > Traffic Control > Port Security > Interface Configuration.
6. Specify the following settings:
a. Security Mode. Enables or disables the port security feature for the selected interface.
b. Max Allowed Dynamically Learned MAC. Sets the maximum number of dynamically learned MAC addresses on the selected interface.
c. Max Allowed Statically Locked MAC. Sets the maximum number of statically locked MAC addresses on the selected interface.
d. Violation Traps. Enables or disables the sending of new violation traps designating when a packet with a disallowed MAC address is received on a locked port.
7. Click Apply.
Hope it helps.
Regards,
DaneA
NETGEAR Community Team
Your guide, however, conditions me to know or otherwise register each MAC on a certain port. I have a large LAN and cannot afford such work. I want the port to learn the MAC I enter the first time and then no other MACs to avoid security breaches.
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
