How can I configure the limit on MAC address learning on CE switches

18

Run the mac-address limit maximum max-num command in the interface or VLAN view to change the maximum number of MAC addresses learned by an interface or VLAN. By default, no limit on MAC address learning is configured. The value of max-num ranges from 0 to 32767. 0 indicates that the number of MAC addresses learned by an interface or VLAN is not limited. # Configure 10GE1/0/1 to learn a maximum of 30 MAC addresses.
system-view
[~HUAWEI] interface 10ge 1/0/1
[~HUAWEI-10GE1/0/1] mac-address limit maximum 30 [*HUAWEI-10GE1/0/1] commit
# Configure VLAN 10 to learn a maximum of 20 MAC addresses.
system-view [~HUAWEI] vlan 10
[*HUAWEI-vlan10] mac-address limit maximum 20 [*HUAWEI-vlan10] commit Description: After a limit on MAC address learning is configured on an interface of a CE12800 switch, the number of VLAN, VXLAN, and VSI packets received on the interface is limited by the number of learned MAC addresses. For CE8800&CE7800&CE6800&CE5800 series switches, only VXLAN packets received on an interface are not limited by the number of learned MAC addresses.

Other related questions:
How to disable MAC address learning on S series switches
For S series switches (except the S1700), you can use the following methods to disable MAC address learning: 1. Disable MAC address learning on an interface. [HUAWEI] interface gigabitethernet0/0/3 [HUAWEI-GigabitEthernet0/0/3] mac-address learning disable 2. Disable MAC address learning in a VLAN. [HUAWEI] vlan 2 [HUAWEI-vlan2] mac-address learning disable

Whether USG firewalls support MAC address learning restriction
The USG2000 and USG5000 support MAC address learning restriction.

If you have more questions, you can seek help from following ways:
To iKnow To Live Chat
Scroll to top