4 Command Line Interface

Command Mode

Interface Configuration

Command Usage

The maximum number of MAC addresses per port is 1024, and the maximum number of secure MAC addresses supported for the switch system is 1024. When the limit is reached, all new MAC addresses are treated as authentication failed.

Example

Console(config-if)#network-access max-mac-count 5

Console(config-if)#

network-access mac-filter

Use this command to define MAC address filters for network access. The MAC address filters are used to specify MAC addresses to be excluded from network access authentication. Use the no form of this command to remove existing MAC address filters.

Syntax

[no] network-access mac-filter filter-idmac-address

filter-id- The number that identifies the filter. (Range: 1-64)

mac-address- A MAC address to be excluded from authentication. (Must be in the format: xx-xx-xx-xx-xx-xx.)

Default Setting

None

Command Mode

Global Configuration

Command Usage

Enter this command more than once with the same filter ID to add multiple MAC addresses to a filter.

Once created, filters must be applied to a port interface using the network-accessport-mac-filtercommand. Only one filter can be applied to a port.

MAC addresses in a filter are not authenticated by a RADIUS server when seen on a port, the addresses are immediately added to the secure MAC address table.

4-96

Page 338
Image 338
Accton Technology ES3526XA, ES3552XA Network-access mac-filter, Syntax No network-access mac-filter filter-idmac-address