Switch HPE 5130 EI port security - no logs

G_Ionut · ‎08-03-2021

Hi,

I have a port security configuration on a hpe 5130 ei switch and I don't receive syslog events when a port security intrusion event occur.

I'm using a sticky mac port security on interfaces and when another device (other than authorized mac) is conected, the interace is shutdown, but no portsec intrusion event is generated not even in the console. Just port down events are generated in this situation.

Bellow is the switch configuration (part of) :

port-security enable

interface GigabitEthernet1/0/2
port-security intrusion-mode disableport
port-security max-mac-count 1
port-security port-mode autolearn
port-security mac-address security sticky b.....

info-center security-logfile enable
info-center loghost xx.xx.xx.xx facility local1
info-center source PORTSEC loghost level debugging

Curent firmware: 7.1.070, Release 3506

-Alex- · ‎08-03-2021

Hello G_Ionut,

Please use the following to enable logs:

Enter system view.
system-view
Enable logging for port security users.
port-security access-user log enable [ failed-authorization | mac-learning | violation ] *
By default, logging is disabled for port security users.
If you do not specify any parameters, this command enables all logging functions for port security users.

Enabling logging for port security users (hpe.comhttps://techhub.hpe.com/eginfolib/networking/docs/switches/5130ei/5200-3946_security_cg/content/485048283.htm)

Hope this helps!

I am an HPE Employee

akg7 · ‎08-03-2021

Hello @ G_lonut,

Is this command configured into switch:

[hpe] info-center loghost <host-ipv4-address>

Thanks!

Note: While I am an HPE Employee, all of my comments (whether noted or not), are my own and are not any official representation of the company

G_Ionut · ‎08-03-2021

OK. Thank you. That solved the problem.

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

Switch HPE 5130 EI port security - no logs

Switch HPE 5130 EI port security - no logs

Re: Switch HPE 5130 EI port security - no logs

Re: Switch HPE 5130 EI port security - no logs

Re: Switch HPE 5130 EI port security - no logs