Filter
Top Products
DES-7200 Configuration Guide Chapter 1 Access Control List
Configuration
1-25
Command Function
DES-7200(config)# security access-group
acl-name
Configure a security tunnel on the
interface.
If the interface is set as an exception port, remove the setting and then configure the
security tunnel on the interface.
The following example configures a security tunnel.
Set port 4 as security port and bind IP address and MAC address
DES-7200(config)#interface FastEthernet 0/4
DES-7200(config-if)#switchport port-security
DES-7200(config-if)#switchport port-security mac-address 0000.0000.0011
ip-address 192.168.6.3
Only the packets whose source IP address is 192.168.6.3 and MAC address is
0000.0000.0011 can flow in the switch from port 4. To receive IPX packets, set a
security tunnel as follows:
DES-7200#configure
DES-7200(config)#expert access-list extended safe_channel
DES-7200(config-exp-nacl)#permit ipx any any
DES-7200(config-exp-nacl)#exit
DES-7200(config)#security global access-group safe_channel
Or configure a security tunnel on the interface:
DES-7200#configure
DES-7200(config)#expert access-list extended safe_channel
DES-7200(config-exp-nacl)#permit ipx any any
DES-7200(config-exp-nacl)#exit
DES-7200(config)#interface FastEthernet 0/4
DES-7200(config-if)#security access-group safe_channel