Umber, Imitation, Unction of – QTECH QSW-2800 Инструкция по настройке User Manual

Page 317: Ypical, Xamples, Roubleshooting

background image

+7(495) 797-3311 www.qtech.ru
Москва, Новозаводская ул., 18, стр. 1

303

39.3 The Number Limitation

Function of MAC in Port Typical

Examples

The Number Limitation of MAC in Port Typical Configuration Example

In the network topology above, SWITCH B connects to many PC users, before enabling the

number limitation function of MAC, if the system hardware has no other limitation, SWTICH A

and SWTICH B can get the MAC list entries of all the PC, so limiting the MAC list entry can

avoid DOS attack to a certain extent. When malicious users frequently do MAC cheating, it will

be easy for them to fill the MAC list entries of the switch, causing successful DOS attacks.

Limiting the MAC list entry can prevent DOS attack.

On port 1/1 of SWITCH A, set the max number can be learnt of dynamic MAC address as 20.

SWITCH A configuration task sequence:

Switch (config)#interface ethernet 1/1

Switch (Config-If-Ethernet1/1)#switchport mac-address dynamic maximum 20

39.4 The Number Limitation

Function of MAC in Port

Troubleshooting Help

The number limitation function of MAC in Port is disabled by default, if users need to limit the

SWITCH A

SWITCH B

PC

PC

PC

PC

PC

………