3com 5500-ei pwr Reference Guide

 

1-17 

z 

Before setting the security mode to autolearn, you need to use the port-security max-mac-count 

command to configure the maximum number of MAC addresses allowed on the port.  

z 

When a port operates in the autolearn mode, you cannot change the maximum number of MAC 

addresses allowed on the port.  

z 

After setting the security mode to autolearn, you cannot configure static or blackhole MAC 

addresses on the port.  

z 

When the port security mode is not noRestriction, you need to use the undo port-security 

port-mode  command to change it back to noRestriction  before you change the port security 

mode to other modes. 

 

On a port configured with a security mode, you cannot do the following:  

z 

Configure the maximum number of MAC addresses that can be learned.  

z 

Configure the port as a reflector port for port mirroring. 

z 

Configure the port as a Fabric port. 

z 

Configure link aggregation.  

Related commands: display port-security. 

# Set the security mode of Ethernet 1/0/1 on the switch to userLogin. 

<Sysname> system-view 

System View: return to User View with Ctrl+Z. 

[Sysname] port-security enable 

[Sysname] interface Ethernet 1/0/1 

[Sysname-Ethernet1/0/1] port-security port-mode userlogin 

port-security timer autolearn age 

undo port-security timer autolearn 

System view 

age: Aging time of the security MAC address entries, in the range 1 to 30240 minutes.  

Use the port-security timer autolearn command to configure the aging time for the security MAC 

address entries that are learned by the port automatically. 

Use the undo port-security timer autolearn command to restore the default. 

By default, the aging time is 0, that is, the security MAC address entries are not aged.