- MAC-security enabled globally
- MAC-security enabled at interface level
! GLOBAL mac-security commands
mac-security enable
mac-security intrusion-detect enable intrusion-timer 14400
! INTERFACE LEVEL mac-security commands
interface Ethernet ALL
mac-security port <PORT> enable
- If any packet comes to the configured port, the port goes down
- If port is re-enabled, port comes back up
- Once another packet received, port goes down again
- If auto-learning configured and port re-enabled then port remains up until max-addr count exceeded
mac-security auto-learning port [port] enable
mac-security auto-learning port [port] max-addrs 4