Operation Manual – Port Security & Port Binding
Quidway S3900 Series Ethernet Switches-Release 1510 Chapter 1 Port Security Configuration
Huawei Technologies Proprietary
1-6
1.2.2 Configuring Security MAC
Security MAC is a special type MAC address and similar with static MAC address. One
Security MAC can only be added to one port in the same VLAN. Using this feature, you
can bind a MAC address with a port in the same VLAN.
Security MAC can be learned by the autolearn function of Port-Security feature, and
can be configured by the command or MIB manually.
Before adding Security MAC, you may configure the port security mode to autolearn
and then the MAC address learning method will change:
z Original dynamic MAC address will be deleted;
z If the maximum Security MAC number is not reached maximum, the new MAC
address learned by the port will be added as Security MAC;
z If the maximum Security MAC number is reached maximum, the new MAC
address cannot be learned by the port and the port mode will be changed from
autolearn to secure.
Note:
The Security MAC addresses configured are written to the configuration file; they will
not get lost whether the port is up or down. Security MAC addresses saved in the
configuration file can be restored after the switch reboots.
Table 1-3 Configure Security MAC address
Operation Command Description
Enter system view
system-view
-
Enable the port security
port-security enable
Required
Enter Ethernet port view
interface interface-type
interface-number
-
Set the maximum
number of Security MAC
addresses allowed by
the port
port-security
max-mac-count
count-value
Required
By default, the maximum
number of Security MAC
addresses is not limited
Set the port mode to
autolearn
port-security port-mode
autolearn
Required
Add a Security MAC
address manually
mac-address security
mac-address [ interface
interface-type
interface-number ] vlan
vlan-id
Required
This command can be
configured either in
system view or Ethernet
port view
To Next Page
Loading...
Need help?
General