Setting The Port Security Mode - HP FlexFabric 5700 Series Security Configuration Manual
Hide thumbs
Also See for FlexFabric 5700 Series:
- Configuration manual (185 pages) ,
- Configuration manual (125 pages) ,
- Configuration manual (132 pages)
Table of Contents
Advertisement
The port security's limit on the number of secure MAC addresses on a port is independent of the MAC
learning limit described in MAC address table configuration. For more information about MAC address
table configuration, see Layer 2—LAN Switching Configuration Guide.
To set the maximum number of secure MAC addresses allowed on a port:
Step
1.
Enter system view.
2.
Enter Layer 2 Ethernet
interface view.
3.
Set the maximum number of
secure MAC addresses
allowed on a port.
Setting the port security mode
Before you set a port security mode for a port, complete the following tasks:
Disable 802.1X and MAC authentication.
•
Verify that the port does not belong to any aggregation group.
•
If you are configuring the autoLearn mode, set port security's limit on the number of secure MAC
•
addresses. You cannot change the setting when the port is operating in autoLearn mode.
When you set the port security mode, follow these guidelines:
You can specify a port security mode when port security is disabled, but your configuration cannot
•
take effect.
Changing the port security mode of a port logs off the online users of the port.
•
•
Do not enable 802.1X authentication or MAC authentication on a port where port security is
configured.
To enable a port security mode:
Step
1.
Enter system view.
2.
(Optional.) Set an OUI value
for user authentication.
3.
Enter Layer 2 Ethernet
interface view.
Command
system-view
interface interface-type
interface-number
port-security max-mac-count
count-value
Command
system-view
port-security oui index index-value
mac-address oui-value
interface interface-type
interface-number
178
Remarks
N/A
N/A
By default, port security does not
limit the number of secure MAC
addresses on a port.
Remarks
N/A
By default, no OUI value is
configured for user authentication.
This command is required for the
userlogin-withoui mode.
You can set multiple OUIs, but
when the port security mode is
userlogin-withoui, the port allows
one 802.1X user and only one user
that matches one of the specified
OUIs.
N/A
- Quick Links:
- Configuring Local Users
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
