Example 4-5 shows how to configure the aging time to 5 minutes for the inactivity aging type. In this example,
aging is enabled for statically configured secure addresses on the port.
Example 4-5. Port Security Aging Configuration Example
Switch(config)# interface Fastethernet0/1
Switch(config-if)# switchport mode access
Switch(config-if)# switchport port-security aging time 5
Switch(config-if)# switchport port-security aging type inactivity
Switch(config-if)# switchport port-security aging static
Access Lists on Switches
The switch supports the following four types of ACLs for traffic filtering:
Router ACL
Port ACL
VLAN ACL
MAC ACL
Router ACL
As the name implies, Router ACLs are similar to the IOS ACL discussed in Chapter 2, "Access Control," and can
be used to filter network traffic on the switched virtual interfaces (SVI). (SVI interfaces are Layer 3 interfaces on
VLANs, on Layer 3 physical interfaces, and on Layer 3 EtherChannel interfaces.) Both standard and extended
ACLs are supported. For more details to configure Router ACL, refer to Chapter 2.
Port ACL
Port ACLs are similar to Router ACLs but are supported on physical interfaces and configured on Layer 2
interfaces on a switch.
Pages:
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181