Displaying And Maintaining Port Security; Port Security Configuration Examples; Port Security Configuration For Autolearn Mode - H3C S5500-EI Series Operation Manual – Port Security

Operation Manual – Port Security
H3C S5500-EI Series Ethernet Switches
Ignore the authorization
information from the
RADIUS server

1.9 Displaying and Maintaining Port Security

Display port security
configuration information,
operation information, and
statistics about one or
more ports or all ports
Display information about
secure MAC addresses
Display information about
blocked MAC addresses

1.10 Port Security Configuration Examples

1.10.1 Port Security Configuration for autoLearn Mode

I. Network requirements
Restrict port GigabitEthernet 1/0/1 of the switch as follows:
Allow up to 64 users to access the port without authentication and permit the port
to learn and add the MAC addresses of the users as secure MAC addresses.
After the number of secure MAC addresses reaches 64, the port stops learning
MAC addresses. If any frame with an unknown MAC address arrives, intrusion
protection is triggered and the port is disabled and stays silence for 30 seconds.
II. Network diagram
Figure 1-1 Network diagram for port security configuration for autoLearn mode
To do...
port-security
authorization ignore
To do...
display port-security [ interface
interface-list ]
display port-security
mac-address security [ interface
interface-type interface-number ]
[ vlan vlan-id ] [ count ]
display port-security
mac-address block [ interface
interface-type interface-number ]
[ vlan vlan-id ] [ count ]
Chapter 1 Port Security Configuration
Use the command...
Use the command...
1-11
Remarks
Required
By default, a port uses the
authorization information
from the RADIUS server.
Remarks
Available in
any view
Available in
any view
Available in
any view