After the port security function is enabled, the maximum number of MAC addresses learned by
an interface is 1 by default.
----End
6.4.5 (Optional) Configuring the Protective Action for an Interface
Procedure
Step 1 Run:
system-view
The system view is displayed.
Step 2 Run:
interface interface-type interface-number
The interface view is displayed.
Step 3 Run:
port-security protect-action { protect | restrict | shutdown }
The protective action is configured for the interface.
The router performs the protective action when the number of MAC addresses learned on the
interface exceeds the limit. The default action is restrict.
----End
6.4.6 (Optional) Setting the Aging Time for Secure Dynamic MAC
Addresses on an Interface
Context
After the port security function is enabled on an interface, the MAC addresses learned by the
interface are secure dynamic MAC addresses and will not be aged out.
If the MAC addresses learned by an interface can be trusted for a specific period of time, you
can run the port-security aging-time command to set an aging time for the secure dynamic
MAC addresses. When the aging time expires, the secure dynamic MAC addresses are aged out.
Procedure
Step 1 Run:
system-view
The system view is displayed.
Step 2 Run:
interface interface-type interface-number
The interface view is displayed.
Step 3 Run:
port-security aging-time aging-time
Huawei AR3200 Series Enterprise Routers
Configuration Guide - LAN 6 MAC Address Table Configuration
Issue 02 (2012-03-30) Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
164
To Next Page
Loading...
