set interface gigabit-ethernet port-security block

Owned by Tracy Yang (Unlicensed)
Apr 26, 2023
1 min read

The set interface gigabit-ethernet port-security block command configures the type of packets that will be blocked in the egress direction of the secure port.


Command Syntax

set interface gigabit-ethernet <interface-name> port-security block <all | broadcast | multicast | uni-multi-cast | unicast>


Parameter

Parameter

Description

gigabit-ethernet <interface-name>

Specifies the physical interface name. For example, te-1/1/49, ge-1/1/1.

block <all | broadcast | multicast | uni-multi-cast | unicast>

Specifies the packet type which will be blocked on the egress direction of the port enabled with port security. The value could be all, broadcast, multicast, uni-multi-cast or unicast.

  •   all: Discards all the packets in egress direction of the port.
  •   broadcast: Discards only the broadcast packets in egress direction of the port.
  •   multicast: Discards only the multicast packets in egress direction of the port.
  •   uni-multi-cast: Discards both the unknown unicast packets and multicast packets in egress direction of the port.
  •   unicast: Discards only the unknown unicast packets in egress direction of the port.

By default, packets will not be blocked by port security in egress direction of the port.


Example
• Configure to discard only the broadcast packets in egress direction of the port.

admin@XorPlus# set interface gigabit-ethernet ge-1/1/1 port-security block broadcast 
admin@XorPlus# commit

Copyright © 2024 Pica8 Inc. All Rights Reserved.