中兴交换机端口安全配置

AQYX-LaiBangBian-S5950-1#show mac table interface gei-0/1/1/6
Total MAC address : 2       
MAC            VLAN Outgoing Information         Attribute      From Time
-------------- ---- ---------------------------- -------------- ---- -----------
6002.9220.e834 9    gei-0/1/1/6                  Dynamic        0    00:00:06:15
6002.9261.7dfd 9    gei-0/1/1/6                  Dynamic        0    00:00:06:15

AQYX-LaiBangBian-S5950-1#conf t   //进入配置模式
Enter configuration commands, one per line.  End with CTRL/Z.
AQYX-LaiBangBian-S5950-1(config)#mac  //进入mac全局配置模式
AQYX-LaiBangBian-S5950-1(config-mac)#learning disable interface gei-0/1/1/6  //命令格式learning disable interface 端口

AQYX-LaiBangBian-S5950-1(config-mac)#add permanent 6002.9220.e834 interface gei-0/1/1/6 all-owner-vlan  //添加永久地址表，重启依然生效。格式 add permanent  MAC地址 interface 端口 all-owner-vlan
AQYX-LaiBangBian-S5950-1(config-mac)#add permanent 6002.9261.7dfd interface gei-0/1/1/6 all-owner-vlan

AQYX-LaiBangBian-S5950-1#show running-config mac
!<mac>
mac
  learning disable interface gei-0/1/1/6
  add permanent 6002.9261.7dfd interface gei-0/1/1/6 vlan 9
  add permanent 6002.9220.e834 interface gei-0/1/1/6 vlan 9
$
!</mac>

AQYX-LaiBangBian-S5950-1#show mac table permanent 
Total MAC address : 2       

Flags: Src--Source filter, Dst--Destination filter
       From:0,driver;1,config;2,VPN;3,802.1X;4,micro;5,DHCP;
            6,PBT;7,EVB;8,OTV;9,TRILL;10,ESADI,
       Time--Day:Hour:Min:Sec

 MAC            VLAN Outgoing Information         Attribute      From Time
-------------- ---- ---------------------------- -------------- ---- -----------
6002.9220.e834 9    gei-0/1/1/6                  Permanent      1    N/A        
6002.9261.7dfd 9    gei-0/1/1/6                  Permanent      1    N/A