The maximum number of users a port supports equals the maximum number of secure MAC addresses that port security allows or the maximum number of concurrent users the authentication mode in use allows, whichever is smaller.
An OUI is a
Configuration guidelines
When you configure port security, follow these restrictions and guidelines:
•Before you enable port security, disable 802.1X and MAC authentication globally.
•Only one port security mode can be configured on a port.
•The outbound restriction feature is not supported in this release.
Recommended configuration procedure
To configure basic port security mode:
Step | Remarks | |
| Required. | |
This function enables port security globally and configures intrusion | ||
protection actions. | ||
| By default, port security is disabled globally. | |
|
| |
| Required. | |
This function configures the basic port security mode, maximum secure | ||
MAC addresses, intrusion protection, and outbound restriction for a | ||
port. | ||
| By default, port security is disabled on all ports, and access to the ports | |
| is not restricted. | |
|
| |
| Optional. | |
| Secure MAC addresses never age out or get lost if saved before the | |
| device restarts. One secure MAC address can be added to only one | |
| port in the same VLAN. You can bind a MAC address to one port in the | |
same VLAN. | ||
Secure MAC addresses can be learned by a port in basic port security | ||
mode or manually configured in the Web interface. | ||
| ||
| When the maximum number of secure MAC addresses is reached, no | |
| more can be added. The port allows only packets sourced from a secure | |
| MAC address to pass through. | |
| By default, no secure MAC addresses are configured. | |
|
|
To configure advanced port security mode:
423