Got it

S5720 Switch Port Security - but it allows different MACs

Created: Jun 29, 2018 15:35:13Latest reply: Jul 13, 2018 05:01:56 694 5 0 0
  Rewarded HiCoins: 0 (problem resolved)
This post was last edited by yoface at 2018-06-29 15:37.
Hello

I activated the port security mode for all my gigabit ports 0/0/1 - 0/0/24  with port security enable

I let all it all on standard configuration. The Standard config says with port security the port will only learn 1 MAC adress and when a second new one is connected it will restrict it.
When I test it with two different notebooks, both notebooks can communicate over the same port althoug port security is enabled on this port.

Why does the port not restrict the second Notebook? Is there a other option needed too?


  • x
  • convention:

Featured Answers
Barret
Created Jun 30, 2018 02:36:07 Helpful(0) Helpful(0)

<HUAWEI> system-view
[HUAWEI] interface gigabitethernet 0/0/1
[HUAWEI-GigabitEthernet0/0/1] port-security enable
[HUAWEI-GigabitEthernet0/0/1] port-security max-mac-num 1
[HUAWEI-GigabitEthernet0/0/1] port-security mac-address sticky
View more
  • x
  • convention:

All Answers
Sergio93
Sergio93 Created Jun 29, 2018 16:10:09 Helpful(0) Helpful(0)

Hi Flo,

Please apply this command too :
port-security mac-address sticky

You can refer to this guide. Note that you can also choose the static mode.
http://support.huawei.com/hedex/hdx.do?docid=EDOC1000135317&id=dc_cfg_portsec_0008&text=Example%252520for%252520Configuring%252520Port%252520Security&lang=en

Hope this helps you.
View more
  • x
  • convention:

BEST%20ANSWER!%20If%20you%20think%20I%20earn%20it!%3Cbr%2F%3E%3Cbr%2F%3EIf%20this%20post%20was%20useful%20to%20you%2C%20please%20click%20the%20%3Cimg%20id%3D%22aimg_eYhFO%22%20onclick%3D%22zoom(this%2C%20this.src%2C%200%2C%200%2C%200)%22%20class%3D%22zoom%22%20src%3D%22https%3A%2F%2Fforum.huawei.com%2Fenterprise%2Fen%2Fstatic%2Fimage%2Fcommon%2Fsupport01.png%22%20onmouseover%3D%22img_onmouseoverfunc(this)%22%20onload%3D%22thumbImg(this)%22%20border%3D%220%22%20alt%3D%22%22%20%2F%3E%20%3Cfont%20color%3D%22DarkOrange%22%3EHelpful%3C%2Ffont%3E%20button%20and%20flag%20my%20post%20as%20a%20%26quot%3BBEST%20ANSWER%26quot%3B%20so%20others%20can%20benefit.%20Thank%20you%20%3Cimg%20id%3D%22aimg_H808i%22%20onclick%3D%22zoom(this%2C
Barret
Barret Created Jun 30, 2018 02:36:07 Helpful(0) Helpful(0)

<HUAWEI> system-view
[HUAWEI] interface gigabitethernet 0/0/1
[HUAWEI-GigabitEthernet0/0/1] port-security enable
[HUAWEI-GigabitEthernet0/0/1] port-security max-mac-num 1
[HUAWEI-GigabitEthernet0/0/1] port-security mac-address sticky
View more
  • x
  • convention:

Sergio93
Sergio93 Created Jul 2, 2018 05:05:29 Helpful(0) Helpful(0)

Hi Flo,

Was your problem resolved ?
View more
  • x
  • convention:

BEST%20ANSWER!%20If%20you%20think%20I%20earn%20it!%3Cbr%2F%3E%3Cbr%2F%3EIf%20this%20post%20was%20useful%20to%20you%2C%20please%20click%20the%20%3Cimg%20id%3D%22aimg_eYhFO%22%20onclick%3D%22zoom(this%2C%20this.src%2C%200%2C%200%2C%200)%22%20class%3D%22zoom%22%20src%3D%22https%3A%2F%2Fforum.huawei.com%2Fenterprise%2Fen%2Fstatic%2Fimage%2Fcommon%2Fsupport01.png%22%20onmouseover%3D%22img_onmouseoverfunc(this)%22%20onload%3D%22thumbImg(this)%22%20border%3D%220%22%20alt%3D%22%22%20%2F%3E%20%3Cfont%20color%3D%22DarkOrange%22%3EHelpful%3C%2Ffont%3E%20button%20and%20flag%20my%20post%20as%20a%20%26quot%3BBEST%20ANSWER%26quot%3B%20so%20others%20can%20benefit.%20Thank%20you%20%3Cimg%20id%3D%22aimg_H808i%22%20onclick%3D%22zoom(this%2C
yoface
yoface Created Jul 12, 2018 09:24:31 Helpful(0) Helpful(0)

Hi Sergio,

Yes thanks it looks good. Im testing actually.

The last question is for me, how can I configure the switch it will sending a message to my snmp client if a unintentional event is happening on a port so I get alert?
Is that possible with configuring traps?
View more
  • x
  • convention:

Sergio93
Sergio93 Created Jul 13, 2018 05:01:56 Helpful(0) Helpful(0)

  • x
  • convention:

BEST%20ANSWER!%20If%20you%20think%20I%20earn%20it!%3Cbr%2F%3E%3Cbr%2F%3EIf%20this%20post%20was%20useful%20to%20you%2C%20please%20click%20the%20%3Cimg%20id%3D%22aimg_eYhFO%22%20onclick%3D%22zoom(this%2C%20this.src%2C%200%2C%200%2C%200)%22%20class%3D%22zoom%22%20src%3D%22https%3A%2F%2Fforum.huawei.com%2Fenterprise%2Fen%2Fstatic%2Fimage%2Fcommon%2Fsupport01.png%22%20onmouseover%3D%22img_onmouseoverfunc(this)%22%20onload%3D%22thumbImg(this)%22%20border%3D%220%22%20alt%3D%22%22%20%2F%3E%20%3Cfont%20color%3D%22DarkOrange%22%3EHelpful%3C%2Ffont%3E%20button%20and%20flag%20my%20post%20as%20a%20%26quot%3BBEST%20ANSWER%26quot%3B%20so%20others%20can%20benefit.%20Thank%20you%20%3Cimg%20id%3D%22aimg_H808i%22%20onclick%3D%22zoom(this%2C

Comment

You need to log in to comment to the post Login | Register
Comment

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " Privacy."

My Followers

Login and enjoy all the member benefits

Login

Huawei Enterprise Support Community
Huawei Enterprise Support Community
Block
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Reminder
Please bind your phone number to obtain invitation bonus.