3com 5500 用户手册

In autolearn mode, a port can learn a specified number of MAC addresses and 
save those addresses as secure MAC addresses. Once the number of secure MAC 
addresses learnt by the port exceeds the upper limit defined by the port-security 
max-mac-count command, the port transits to the secure mode. In secure mode, 
a port does not save any new secure MAC addresses and permits only packets 
whose source addresses are secure MAC address or configured dynamic MAC 
addresses.

Figure 12   Network diagram for configuring port security autolearn mode

 

On port Ethernet 1/0/1 of the switch, perform configurations to meet the 
following requirements:

■

Allow a maximum of 80 users to access the port without authentication, and 
save the automatically learned user MAC addresses as secure MAC addresses.

■

To ensure that the host can access the network, add the MAC address 
0001-0002-0003 as a secure MAC address to VLAN 1 on the port.

■

Once the number of secure MAC addresses reaches 80, the port stops MAC 
address learning. If any frame with an unknown source MAC address arrives, 
intrusion protection is triggered and the port is disabled and kept silent for 30 
seconds.

# Enter system view.

<3Com> system-view 

# Enable port security.

[3Com] port-security enable 

Internet

Switch

Host 

Eth1/0/1

MAC:0001 -0002- 0003

Switch 5500 

Release V03.02.04 

All versions 

Switch 5500G

Release V03.02.04 

All versions 

Switch 4500

Release V03.03.00 

All versions