This chapter shows you how to set up port or vlan security by limiting learned MAC address(es).
19.1 MAC Limit Overview
MAC limit allows only packets with limited and dynamically learned MAC addresses and/or
configured static MAC addresses to pass through a port or a VLAN network on the switch. The
switch can learn up to 16K (16384 bytes) MAC addresses in total with no limit on individual ports.
For maximum port security, enable either port security or VLAN security, disable MAC address
learning and configure static MAC address(es) for a port or a VLAN. It is not recommended you
disable MAC Limit together with MAC address learning as this will result in many broadcasts.
19.2 MAC Limit
Click Advanced Application and MAC Limit in the navigation panel to display the screen as
shown.
Figure 111 Advanced Application > Port Security
The following table describes the labels in this screen.
Table 73 MAC Limit
LABEL
Security Mode
19.2.1 Mac Limit: Port Security
Select Port Security and click the Security Mode button in the MAC Limit screen to display port
security settings as shown.
VES1724-56 User's Guide
DESCRIPTION
Select Port Security or VLAN Security and click the Security Mode button to activate
MAC limit or not. Select None to disable this function.
C
HAPTER
1 9
MAC Limit
191