Port-Security Commands - Cisco Nexus 9000 Series NX-API CLI, Release 9.3(x)

Cisco Nexus 9000 Series NX-API CLI, Release 9.3(x)

Latest

Cisco Nexus 9000 Series NX-API CLI Reference, Release 9.3x

show port-security

Python

Copy
import json

"""
Modify these please
"""
url='http://<IP_Address>/ins'
switchuser='<User_ID>'
switchpassword='<Password>'

myheaders={'content-type':'application/json'}
payload={
  "ins_api":{
  "version": "1.0",
  "type": "cli_show",
  "chunk": "0",
  "sid": "1",
  "input": "show port-security",
  "output_format": "json"
}

response = requests.post(url,data=json.dumps(payload), headers=myheaders,auth=(switchuser,switchpassword)).json()
output = json.dumps(response, indent=4, sort_keys=True)


{

  "ins_api": {
    "type": "cli_show",
    "version": "1.0",
    "sid": "eoc",
    "outputs": {
      "output": {
        "input": "show port-security",
        "msg": "Success",
        "code": "200",
        "body": {
          "total_addr": [
            "4",
            "4"
          ],
          "max_sys_limit": "8188",
          "TABLE_eth_port_sec_interfaces": {
            "ROW_eth_port_sec_interfaces": [
              {
                "num_elems": "1",
                "cmdid_show_index": "0"
              },
              {
                "secure_port": "Ethernet1/2",
                "port_state": "1",
                "max_secure_addr": "789",
                "security_violation": "0",
                "security_action": "shutdown",
                "current_addr": "5",
                "num_val": "1",
                "num_elems": "1",
                "cmdid_show_index": "1"
              }
            ]
          }
        }
      }
    }
  }
}

show port-security

The CLI output example below corresponds to the payload example in the code pane on the right. For more information about the show port-security command, see the CLI command reference:

http://www.cisco.com/c/en/us/support/switches/nexus-9000-series-switches/products-command-reference-list.html

Note: This example was added in Cisco NX-OS Release 9.2(1).

CLI Output

CLI Output
Switch# show port-security Total Secured Mac Addresses in System (excluding one mac per port) : 4 Max Addresses limit in System (excluding one mac per port) : 8188 ---------------------------------------------------------------------------- Secure Port MaxSecureAddr CurrentAddr SecurityViolation Security Action (Count) (Count) (Count) ---------------------------------------------------------------------------- Ethernet1/2 789 5 0 Shutdown ============================================================================

Switch# show port-security

Total Secured Mac Addresses in System (excluding one mac per port)     : 4
Max Addresses limit in System (excluding one mac per port) : 8188

----------------------------------------------------------------------------
Secure Port    MaxSecureAddr  CurrentAddr  SecurityViolation  Security Action
                  (Count)       (Count)          (Count)
----------------------------------------------------------------------------
Ethernet1/2            789            5            0              Shutdown
============================================================================

show port-security address

The CLI output example below corresponds to the payload example in the code pane on the right. For more information about the show port-security address command, see the CLI command reference:

http://www.cisco.com/c/en/us/support/switches/nexus-9000-series-switches/products-command-reference-list.html

Note: This example was added in Cisco NX-OS Release 9.2(1).

CLI Output

CLI Output
Switch# show port-security address Total Secured Mac Addresses in System (excluding one mac per port) : 5 Max Addresses limit in System (excluding one mac per port) : 8187 ---------------------------------------------------------------------- Secure Mac Address Table ---------------------------------------------------------------------- Vlan Mac Address Type Remaining Remotely Remotely Ports age learnt aged (mins) out ---- ----------- ------ ------ ------- ----- ---- 1 0000.1111.1115 STATIC 0 No No Ethernet1/2 1 0000.1111.1111 STATIC 0 No No Ethernet1/2 1 0000.1111.1112 STATIC 0 No No Ethernet1/2 1 0000.1111.1113 STATIC 0 No No Ethernet1/2 1 0000.1111.1114 STATIC 0 No No Ethernet1/2 1 88F0.31F9.A341 STICKY 0 No No Ethernet1/2 ======================================================================

Switch# show port-security address

Total Secured Mac Addresses in System (excluding one mac per port)     : 5
Max Addresses limit in System (excluding one mac per port) : 8187

----------------------------------------------------------------------
                    Secure Mac Address Table
----------------------------------------------------------------------
Vlan    Mac Address    Type      Remaining  Remotely Remotely Ports
                                 age        learnt   aged
                                 (mins)              out
----    -----------   ------     ------     -------  -----    ----
   1   0000.1111.1115    STATIC  0          No       No     Ethernet1/2
   1   0000.1111.1111    STATIC  0          No       No     Ethernet1/2
   1   0000.1111.1112    STATIC  0          No       No     Ethernet1/2
   1   0000.1111.1113    STATIC  0          No       No     Ethernet1/2
   1   0000.1111.1114    STATIC  0          No       No     Ethernet1/2
   1   88F0.31F9.A341    STICKY  0          No       No     Ethernet1/2
======================================================================

show port-security interface port-channel 1141

The CLI output example below corresponds to the payload example in the code pane on the right. For more information about the show port-security interface port-channel 1141 command, see the CLI command reference:

http://www.cisco.com/c/en/us/support/switches/nexus-9000-series-switches/products-command-reference-list.html

Note: This example was added in Cisco NX-OS Release 9.2(1).

CLI Output

CLI Output
`Switch# show port-security interface port-channel 1141 Configured Port Security : Enabled Opertional Port Security : Enabled Port Status : Secure UP Violation Mode : Shutdown Aging Time : 30 mins Aging Type : Inactivity Maximum MAC Addresses : 150 Total MAC Addresses : 150 Configured MAC Addresses : 0 Sticky MAC Addresses : 0 Security violation count : 0`

Switch# show port-security interface port-channel 1141 

Configured Port Security   : Enabled
Opertional Port Security   : Enabled
Port Status                : Secure UP
Violation Mode             : Shutdown
Aging Time                 : 30 mins
Aging Type                 : Inactivity
Maximum MAC Addresses      : 150
Total MAC Addresses        : 150
Configured MAC Addresses   : 0
Sticky MAC Addresses       : 0
Security violation count   : 0