Little boy questioned his mother, he asked what he can be in the future..with a sad smile, she tells him he can be anything he wants to be.... Boy said he’d become (an) astronaut and fly out into space crews around the universe he wanted to see the stars and also see other planets in outer space------------- "Why don’t we just keep dreaming, let’s keep our mind with dream and faith, as long as we wish we can make it come true, how old you are never forget your dream and keep dreaming "

Sunday, 23 October 2016

Konfigurasi Cisco Port Security


Konfigurasi Port-Security

Pada switch Cisco Catayst, fitur port security ini secara default seting nya adalah sebagai berikut :
port security default
Secara default port security pada kondisi tidak aktif, dengan maksimum satu MAC address dan security violation nya shutdown.

 Menggunakan skema jaringan dibawah ini saya coba implementasikan port security dinamic dan sticky MAC address pada interface switch  FastEthernet 0/1.

1. Dinamic Port Security 

Switch>enable 
Switch#configure terminal 
Switch(config)#interface fastEthernet 0/1
Switch(config-if)#switchport mode access 
Switch(config-if)#switchport port-security 
Switch(config-if)#exit
Switch(config)#exit
Switch#copy running-config

Verifikasi port security seting :
Switch#show port-security interface [interface id] 
port security verify

2. Sticky Port Security

Switch>enable 
Switch#configure terminal 
Switch(config)#interface fastEthernet 0/1
Switch(config-if)#switchport mode access 
Switch(config-if)#switchport port-security 
Switch(config-if)#switchport port-security maximum [jumlah max mac-address]
Switch(config-if)#switchport port-security violation [protect | restrict | shutdown]
Switch(config-if)#switchport port-security mac-address sticky 
Switch(config-if)#exit
Switch(config)#exit
Switch#copy running-config startup-config 

Verifikasi port security seting :
Switch#show port-security interface [interface id] 
port security verify
Verifikasi sticky mac adress pada running configuration  :
Switch#show running-config
port security running configuration

Ketika terjadi pelanggaran/ security violation oleh mac address yang tidak sah/tidak dikenal pada port FastEthernet 0/1, port akan segera berubah menjadi error-disable atau mati/off :
port security violation occur
port security err-disabled

Terima Kasih.. Semoga bermanfaat :)


Diposkan oleh pada
Label: ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)