Configuring The Number Of Bridged Mac Addresses Allowed - Alcatel-Lucent OmniSwitch 9900 Series Network Configuration Manual

Configuring Learned Port Security
By default, the MAC movement option is disabled. To enable this option for the learning window, use the
following command:
-> port-security learning-window 30 mac-move enable
The following command disables this option for the learning window:
-> port-security learning-window 30 mac-move disable
Starting the Learning Window at Boot Up
By default, the boot-up option is enabled when the learning window time is configured. This option
specifies that whenever the switch reboots, the learning window time period will automatically restart at
the time the reboot occurs.
To disable this functionality, use the boot-up disable parameter with the port-security learning-window
command. For example:
-> port-security learning-window boot-up disable
To enable this functionality, use the boot-up enable parameter with the port-security learning-window
command. For example:
-> port-security learning-window boot-up disable
Note. After the boot-up option is enabled (either by default or explicitly configured), perform the write
memory command to save the port-security learning-window command to the switch configuration file.
This will ensure that the learning window will automatically start when the switch reboots.

Configuring the Number of Bridged MAC Addresses Allowed

To configure the number of bridged MAC addresses allowed on an LPS port, use the
maximum command. For example, the following command sets the maximum number of MAC addresses
learned on port 10 of slot 6 to 75:
-> port-security port 6/10 maximum 75
To specify a maximum number of MAC addresses allowed for multiple ports, specify a range of ports. For
example:
-> port-security port 1/10-15 maximum 10
-> port-security port 2/1-5 maximum 25
If there are 10 configured authorized MAC addresses for an LPS port and the maximum number of
addresses allowed is set to 15, then only 5 dynamically learned MAC address are allowed on this port.
If the maximum number of MAC addresses allowed is reached before the switch LPS time limit expires,
then all source learning of dynamic and configured bridged MAC addresses is stopped on the LPS port.
However, the switch will continue to learn subsequent addresses as filtered until the maximum number of
filtered MAC addresses allowed on the port is reached.
OmniSwitch AOS Release 8 Network Configuration Guide
Configuring Learned Port Security
December 2017
port-security
page 33-15