EasyManua.ls Logo

Huawei quidway s7700 - Checking the Configuration; Configuring MAC Address Anti-Flapping; Establishing the Configuration Task

Huawei quidway s7700
648 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
l protect: discards packets with new source MAC addresses when the number of learned MAC
addresses reaches the limit.
l restrict: discards packets with new source MAC addresses and sends a trap message when
the number of learned MAC addresses exceeds the limit.
l shutdown: shuts down the interface when the number of learned MAC addresses exceeds
the limit.
Step 7 (Optional) Run:
port-security mac-address sticky mac-address vlan vlan-id
A sticky MAC address entry is configured.
----End
7.8.4 Checking the Configuration
After completing the configuration of port security, you can verify the configuration and view
secure dynamic MAC address entries or sticky MAC address entries.
Procedure
l Run the display current-configuration interface interface-type interface-number
command to view the current configuration of an interface.
l Run the display mac-address sticky [ vlan vlan-id | interface-type interface-number ]
*
[ verbose ] command to view sticky MAC address entries.
l Run the display mac-address security [ vlan vlan-id | interface-type interface-number ]
*
[ verbose ] command to view secure dynamic MAC address entries.
----End
7.9 Configuring MAC Address Anti-Flapping
This section describes how to prevent MAC address flapping between interfaces.
7.9.1 Establishing the Configuration Task
Before configuring MAC address anti-flapping, familiarize yourself with the applicable
environment, complete the pre-configuration tasks, and obtain the data required for the
configuration. This will help you complete the configuration task quickly and accurately.
Applicable Environment
As shown in Figure 7-4, an interface of the Switch is connected to a server. To prevent
unauthorized users from using the server MAC address to intercept data of the server, you can
set a high MAC address learning priority on the interface. When the same MAC address is
learned by the server-side interface and other interfaces, the entry learned by the server-side
interface overrides the MAC address entries learned by other interfaces. Therefore, the Switch
will not learn MAC addresses of unauthorized users and only authorized users can access the
server and use network resources.
Quidway S7700 Smart Routing Switch
Configuration Guide - Ethernet 7 MAC Address Table Configuration
Issue 01 (2011-07-15) Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
361

Table of Contents

Other manuals for Huawei quidway s7700

Preview: Configuration Guide
Configuration Guide833 pages
Preview: Configuration Guide - Multicast
Configuration Guide - Multicast551 pages
Preview: Configuration Guide - Qos
Configuration Guide - Qos117 pages

Related product manuals