Configuring Security7-11SecurityResetting Learned AddressesYou can clear all learned and secured addresses out of a port’s address table, andallow that port to begin learning (and securing) new addresses, as follows:1. In the Repeater Security window, click mouse button 1 on the repeaterinterface for which you would like to reset learned addresses.2. Click mouse button 1 on , , or toopen the appropriate window.3. In the Module or Port window, click to select the module(s) or port(s) for whichyou wish to reset learned addresses.4. Click to select the Reset Learned Addresses option. A confirmation windowwill appear; click on to reset addresses, or on to cancel.The port’s address table will be cleared of all Learned and Secure addresses,and the learning process will restart.Tips for Successfully Implementing Eavesdropper ProtectionThere are a couple of things to note about eavesdropper protection, or scrambling,that must be taken into consideration as you are planning security for yournetwork.• Security can only be implemented by locking a port, and can only becompletely disabled by unlocking the port. You cannot enable intruderprotection on aLANVIEWSECURE MIM without also enabling eavesdropperprotection. You can, however, effectively enable eavesdropper protectionalone by selecting the noDisable option for the violation response; selectingnoDisable basically eliminates intruder protection, as all packets will beallowed to pass regardless of their source address. (Note, however, that theport will issue a trap after the first violation.) You can also enable eavesdropperprotection without intruder protection by selecting the Continuous lock mode;see Enabling Security and Traps, page 7-12, for details.• When locking has been enabled for a channel, packets travelling across theinter-RIC bus on the FNB backplane between MIMs operating on that channelwill be scrambled to all but the destination port, and security operates as youwould expect it to. However, packets are always transmitted clean to theEMM-E6’s bridge ports, so any packets transmitted to another channel will beNOTEYou cannot reset learned addresses for any port which is already locked or in anunsecurable state (either natural or forced). If you select a group of ports which includesone in a locked or unsecurable state, or if you select a module or a repeater which has aport in one of these states, the Reset Learned Addresses option will be unavailable.