85 lines
1.4 KiB
TeX
85 lines
1.4 KiB
TeX
\subsection{\texttt{INTRA}}
|
|
|
|
set hostname \&\& port-sec recovery timeout
|
|
\begin{verbatim}
|
|
en
|
|
conf t
|
|
#
|
|
# set hostname to INTRA
|
|
#
|
|
hostname INTRA
|
|
#
|
|
# port-sec recovery timeout - 120s
|
|
#
|
|
errdisable recovery interval 120s
|
|
errdisable recovery cause psecure-violation
|
|
\end{verbatim}
|
|
|
|
\noindent
|
|
enable port-sec for g0/{1|2|3}
|
|
\begin{verbatim}
|
|
# continuation of the previous block, no need to "enable" and "conf t" again
|
|
interface g0/1
|
|
switchport mode access
|
|
switchport port-security maximum 2
|
|
switchport port-security violation shutdown
|
|
switchport port-security mac-address sticky
|
|
switchport port-security
|
|
#
|
|
# g0/2
|
|
#
|
|
interface g0/2
|
|
switchport mode access
|
|
switchport port-security maximum 2
|
|
switchport port-security violation shutdown
|
|
switchport port-security mac-address sticky
|
|
switchport port-security
|
|
#
|
|
# g0/3
|
|
#
|
|
interface g0/3
|
|
switchport mode access
|
|
switchport port-security maximum 2
|
|
switchport port-security violation shutdown
|
|
switchport port-security mac-address sticky
|
|
switchport port-security
|
|
\end{verbatim}
|
|
|
|
\noindent
|
|
trust arp packets from g0/0 (\texttt{STAFF})
|
|
\begin{verbatim}
|
|
en
|
|
conf t
|
|
in g0/0
|
|
no shut
|
|
ip arp inspection trust
|
|
end
|
|
#
|
|
# verify
|
|
#
|
|
show ip arp inspection interfaces g0/0
|
|
\end{verbatim}
|
|
|
|
\subsubsection{Intranet}
|
|
\texttt{INTRA} cofigure vlan
|
|
\begin{verbatim}
|
|
en
|
|
conf t
|
|
vlan 7
|
|
#
|
|
# set name
|
|
#
|
|
name Intranet
|
|
exit
|
|
#
|
|
# add ports
|
|
#
|
|
in g0/1
|
|
switchport access vlan 7
|
|
in g0/2
|
|
switchport access vlan 7
|
|
in g0/3
|
|
switchport access vlan 7
|
|
exit
|
|
\end{verbatim}
|