Configuring Mac Address Security On A Service Instance - Cisco NCS 4200 Series Configuration Manual

Configuring MAC Address Security on Service Instances and EVC Port Channels
Command or Action
Step 11
mac security address deny mac-address
Example:
Device(config-if-srv)# mac security address deny
a2aa.aaaa.aaae
Step 12 mac security
Example:
Device(config-if-srv)# mac security
Step 13
end
Example:
Device(config-if-srv)# end

Configuring MAC Address Security on a Service Instance

Perform this task to configure an upper limit for the number of secured MAC addresses allowed on a service
instance. This number includes addresses added as part of a permit list as well as dynamically learned MAC
addresses. If the upper limit is decreased, all learned MAC entries are removed.
SUMMARY STEPS
1. enable
2. configure terminal
3. interface type number
4. service instance id
5. encapsulation dot1q vlan-id
6. bridge-domain bridge-id
7. mac security maximum addresses maximum-addresses
8. mac security
9. end
DETAILED STEPS
Command or Action
Step 1 enable
Configuring MAC Address Security on a Service Instance
Purpose
Adds the specified MAC address as a denied MAC address
for the service instance.
Enables MAC security on the service instance.
Returns to user EXEC mode.
ethernet
Purpose
Enables privileged EXEC mode.
Layer 2 Configuration Guide for Cisco NCS 4200 Series
51