223
port security
no port-security
Enable MAC address binding function
for the port and lock the port. When a
port is locked, the MAC address learning
function for the port will be disabled: the
“
no port-security”
command disables
the MAC address binding function for the
port
,
and
restores the MAC address
learning function for the port.
2. Lock the MAC addresses for a port
Command Explanation
Interface Mode
port-security lock
no port-security lock
Lock the port. After locking the port, no
MAC address can be learnt. “
no
port-security lock
” resume the MAC
address learning.
port-security convert
Convert dynamic secure MAC
addresses learned by the port to static
secure MAC addresses.
port-security timeout <value>
no port-security timeout
Enable port locking timer function; the
“
no port-security timeout
” restores the
default setting.
port-security mac-address
<mac-address>
no port-security mac-address
<mac-address>
Add static secure MAC address; the
“
no port-security mac-address”
command deletes static secure MAC
address.
Admin Mode
clear port-security dynamic [address
<mac-addr> | interface <interface-id>]
Clear dynamic MAC addresses learned
by the specified port.
3. MAC address binding property configuration
Command Explanation
Interface Mode
port-security maximum <value>
no port-security maximum <value>
Set the maximum number of secure
MAC addresses for a port; the “
no
port-security maximum
” command
restores the default value.