1-17
z
Before setting the security mode to
autolearn
, you need to use the
port-security max-mac-count
command to configure the maximum number of MAC addresses allowed on the port.
z
When a port operates in the
autolearn
mode, you cannot change the maximum number of MAC
addresses allowed on the port.
z
After setting the security mode to
autolearn
, you cannot configure static or blackhole MAC
addresses on the port.
z
When the port security mode is not
noRestriction
, you need to use the
undo port-security
port-mode
command to change it back to
noRestriction
before you change the port security
mode to other modes.
On a port configured with a security mode, you cannot do the following:
z
Configure the maximum number of MAC addresses that can be learned.
z
Configure the port as a reflector port for port mirroring.
z
Configure the port as a Fabric port.
z
Configure link aggregation.
Related commands:
display port-security
.
Examples
# Set the security mode of Ethernet 1/0/1 on the switch to
userLogin
.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] port-security enable
[Sysname] interface Ethernet 1/0/1
[Sysname-Ethernet1/0/1] port-security port-mode userlogin
port-security timer autolearn
Syntax
port-security timer autolearn
age
undo port-security timer autolearn
View
System view
Parameters
age
: Aging time of the security MAC address entries, in the range 1 to 30240 minutes.
Description
Use the
port-security timer autolearn
command to configure the aging time for the security MAC
address entries that are learned by the port automatically.
Use the
undo port-security timer autolearn
command to restore the default.
By default, the aging time is 0, that is, the security MAC address entries are not aged.
Summary of Contents for 5500-EI PWR
Page 43: ...2 6...
Page 76: ...1 17...
Page 228: ...ii stp transmit limit 1 44 vlan mapping modulo 1 45 vlan vpn tunnel 1 46...
Page 477: ...5 24 Sysname vlan 2 Sysname vlan2 service type multicast...
Page 503: ...2 3 System View return to User View with Ctrl Z Sysname dot1x url http 192 168 19 23...
Page 519: ...iii...
Page 597: ...2 2 security policy server 192 168 0 1 user name format without domain...
Page 648: ...1 9 Examples Clear static ARP entries Sysname reset arp static...
Page 663: ...4 3 Sysname resilient arp interface vlan interface 2...
Page 767: ...1 28 From 12 00 Jan 1 2008 to 12 00 Jun 1 2008...
Page 1111: ...ii xmodem get 3 18...
Page 1314: ...A 44 Z...