l shutdown: shuts down the interface when the number of learned MAC addresses exceeds
the limit.
----End
7.8.3 Configuring the Sticky MAC Function on an Interface
After the sticky MAC function is enabled on an interface, MAC addresses learned by the
interface change to sticky MAC addresses. When the number of sticky MAC addresses reaches
the limit, the interface does not learn new MAC addresses and allows only the devices with the
learned MAC addresses to communicate with the S7700. You can configure a protection action
for the S7700 to perform when it receives a packet with a new source MAC address.
Context
The sticky MAC function changes MAC addresses learned by an interface to sticky MAC
addresses. Sticky MAC addresses will not be aged out and will exist after the S7700 restarts.
Procedure
Step 1 Run:
system-view
The system view is displayed.
Step 2 Run:
interface interface-type interface-number
The interface view is displayed.
Step 3 Run:
port-security enable
Port security is enabled.
By default, port security is disabled on an interface.
Step 4 Run:
port-security mac-address sticky
The sticky MAC function is enabled on the interface.
By default, the sticky MAC function is disabled on an interface.
Step 5 (Optional) Run:
port-security max-mac-num max-number
The limit on the number of sticky MAC addresses is set.
By default, the limit on the number of sticky MAC addresses is 1.
Step 6 (Optional) Run:
port-security protect-action { protect | restrict | shutdown }
The protection action is configured.
The default action is restrict.
Quidway S7700 Smart Routing Switch
Configuration Guide - Ethernet 7 MAC Address Table Configuration
Issue 01 (2011-07-15) Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
360
To Next Page
Loading...
