Switching Tech, Lab 18 Port Security - Violation Action

 Kita hapus terlebih dahulu lab sebelumnya

SW-1:

SW-1(config)#no errdisable recovery interval 60  

SW-1(config)#no errdisable recovery cause psecure-violation  

SW-1(config)#default int f1/0/1  

R1 

R1(config)#default int f0/0 

Cek lagi Mac address di sisi router 

R1 

R1(config)#do show int f0/0 | i add  

  Hardware is Gt96k FE, address is 0021.d831.1bda (bia0021.d831.1bda)  

Konfigurasikan port-security pada SW-1 

SW-1:

SW-1(config)#interface FastEthernet 1/0/1  

SW-1(config-if)#switchport mode access  

SW-1(config-if)#switchport port-security  

SW-1(config-if)#switchport port-security mac-address 0021.d831.1bda 

SW-1(config-if)#switchport port-security violation restrict  

Kita rubah nilai mac address f0/0 pada Router 

R1 

R1(config)#int F0/0  

R1(config-if)#mac-address aaaa.bbbb.cccc  

R1(config-if)#exit  

Verifikasi 

SW-1:

SW-1(config)#  

*Mar 1 00:30:44.419: %PORT_SECURITY-2-PSECURE_VIOLATION: 

Security violation occurred, caused by MAC address aaaa.bbbb.cccc on port FastEthernet1/0/1.  

*Mar 1 00:30:51.902: %LINEPROTO-5-UPDOWN: Line protocol on Interface Vlan1, changed state to up  

*Mar 1 00:30:52.699: %PORT_SECURITY-2-PSECURE_VIOLATION: 

Security violation occurred, caused by MAC address aaaa.bbbb.cccc on port FastEthernet1/0/1. 

 

SW-1:

SW-1(config)#do show port-security interface f1/0/1 

Port Security : Enabled  

Port Status                   : Secure-up  

Violation Mode          : Restrict  

Aging Time                : 0 mins  

Aging Type       : Absolute Secure Static  

Address Aging : Disabled Maximum  

MAC Addresses : 1  

Total  MAC  Addresses  :  1 

Configured  

MAC  Addresses  :  1  Sticky  

MAC Addresses       : 0  

Last Source Address:Vlan : aaaa.bbbb.cccc:1  

Security Violation Count : 5