diff options
author | Hans Schultz <schultz.hans@gmail.com> | 2022-02-28 14:36:49 +0100 |
---|---|---|
committer | David Ahern <dsahern@kernel.org> | 2022-03-04 09:17:30 -0700 |
commit | d4fe36736dfb4565153f2a35715bdc200fe65dc7 (patch) | |
tree | 1a2efe03c3642f6cf58d4f4516bd2ae456999209 | |
parent | 092af16b7eedb651282b288aa6fa7bdfaa01d588 (diff) | |
download | iproute2-d4fe36736dfb4565153f2a35715bdc200fe65dc7.tar.gz |
man8/bridge.8: add locked port feature description and cmd syntax
Signed-off-by: Hans Schultz <schultz.hans+netdev@gmail.com>
Signed-off-by: David Ahern <dsahern@kernel.org>
-rw-r--r-- | man/man8/bridge.8 | 11 |
1 files changed, 11 insertions, 0 deletions
diff --git a/man/man8/bridge.8 b/man/man8/bridge.8 index 81ce9e6f7..cb0ffc166 100644 --- a/man/man8/bridge.8 +++ b/man/man8/bridge.8 @@ -50,6 +50,7 @@ bridge \- show / manipulate bridge addresses and devices .BR neigh_suppress " { " on " | " off " } ] [ " .BR vlan_tunnel " { " on " | " off " } ] [ " .BR isolated " { " on " | " off " } ] [ " +.BR locked " { " on " | " off " } ] [ " .B backup_port .IR DEVICE " ] [" .BR nobackup_port " ] [ " @@ -514,6 +515,16 @@ able to communicate with non-isolated ports only. By default this flag is off. .TP +.BR "locked on " or " locked off " +Controls whether a port will be locked, meaning that hosts behind the +port will not be able to communicate through the port unless an FDB +entry with the units MAC address is in the FDB. +The common use is that hosts are allowed access through authentication +with the IEEE 802.1X protocol or based on whitelists or like setups. +By default this flag is off. + + +.TP .BI backup_port " DEVICE" If the port loses carrier all traffic will be redirected to the configured backup port |