Comware

 View Only

  • 1.  MAC specific port security via SNMP

    Posted Dec 12, 2006 02:23 AM
    Is there a way to set port security via SNMP?

    I want to restrict the ports of my Procurve 2848 switches to just one MAC address. This can be done easily with the CLI, but I'd really like to manage them directly through SNMP (with my own scripts).

    The hubSecurity OID from HP-ICF-GENERIC-RPTR MIB gives the means to set the learn-mode and address-limit, but I haven't figured out how to set the MAC address. Adding a HpSecureCfgAddrEntry doesn't seem to be possible.

    So, should I be using some other OID on some other MIB, or what?


  • 2.  RE: MAC specific port security via SNMP

    Posted Dec 12, 2006 05:34 PM
    I've run across this same problem in the past.

    What I ended up doing via SNMP was setting the learn-mode to static, and address-limit to 1.

    This will then automatically learn the first mac-address on that port and enter it into the running configuration automatically.

    It would be nice to be able to set the mac-addresses via SNMP too, especially on the ports which have more than 1 mac-address currently connected. For those ports though I've had to set it via the CLI.


Related Content