To do...
Add a security
MAC address
Displaying and Maintaining Port Security Configuration
To do...
Display information about port
security configuration
Display information about
security MAC address
configuration
Port Security Configuration Example
Port Security Configuration Example
Network requirements
Implement access user restrictions through the following configuration on GigabitEthernet 1/0/1 of the
switch.
Allow a maximum of 80 users to access the port without authentication and permit the port to learn
and add the MAC addresses of the users as security MAC addresses.
To ensure that Host can access the network, add the MAC address 0001-0002-0003 of Host as a
security MAC address to the port in VLAN 1.
After the number of security MAC addresses reaches 80, the port stops learning MAC addresses. If
any frame with an unknown MAC address arrives, intrusion protection is triggered and the port will
be disabled and stay silent for 30 seconds.
Network diagram
Figure 1-1 Network diagram for port security configuration
Configuration procedure
# Enter system view.
<Switch> system-view
# Enable port security.
mac-address security mac-address
In system
interface interface-type interface-number vlan
view
vlan-id
interface interface-type interface-number
In Ethernet
port view
mac-address security mac-address vlan
vlan-id
display port-security [ interface interface-list ]
display mac-address security [ interface
interface-type interface-number ] [ vlan vlan-id ]
[ count ]
Use the command...
Use the command...
1-10
Remarks
Either is
required.
By default, no
security MAC
address is
configured.
Remarks
Available in
any view