port-security aging-time (network enhanced profile view)
Function
The port-security aging-time command sets the aging time of secure dynamic MAC addresses on an interface in a network enhanced profile.
The undo port-security aging-time command cancels the configuration.
By default, the aging time of secure dynamic MAC addresses is not configured in a network enhanced profile, that is, secure dynamic MAC addresses will not be aged out.
This command can only be executed on a parent switch.
Parameters
| Parameter | Description | Value |
|---|---|---|
time |
Specifies the aging time of secure dynamic MAC address entries. |
The value is an integer ranging from 1 to 1440, in minutes. |
Usage Guidelines
Application scenario
After creating a network enhanced profile, you can set the aging time of secure dynamic MAC addresses in the profile. After the profile is bound to an AS port, the configuration is automatically delivered to the AS port. The following configuration is generated on the AS:
# interface GigabitEthernet0/0/1 port-security enable port-security aging-time 10 #
In the preceding configuration, GigabitEthernet0/0/1 is used for reference only. The actual configuration depends on the profile.
Prerequisites
Before setting the aging time of secure dynamic MAC addresses in a network enhanced profile, ensure that port security is enabled in the profile.
Example
# Set the aging time of secure dynamic MAC addresses on an interface to 10 minutes.
<HUAWEI> system-view [HUAWEI] uni-mng [HUAWEI-um] network-enhanced-profile name profile_1 [HUAWEI-um-net-enhanced-profile_1] port-security enable [HUAWEI-um-net-enhanced-profile_1] port-security aging-time 10