• Supported Platforms
• EX Series

• Related Topics
• mac-limit
• Example: Configuring Port Security, with DHCP Snooping, DAI, MAC Limiting, and MAC Move Limiting, on an EX Series Switch
• Configuring MAC Move Limiting (CLI Procedure)
• Configuring MAC Move Limiting (J-Web Procedure)
• Configuring Autorecovery From the Disabled State on Secure or Storm Control Interfaces (CLI Procedure)

mac-move-limit

Syntax

Hierarchy Level

Release Information

Statement introduced in Junos OS Release 9.0 for EX Series switches.

The default value for the action option was changed in Junos OS Release 9.5 for EX Series switches.

The shutdown option was modified in Junos OS Release 9.6 for EX Series switches.

Description

Specify the number of times a MAC address can move to a new interface (port) in 1 second and the action to be taken by the switch if the MAC address move limit is exceeded.

Default

The default move limit is unlimited. The default action is drop.

Options

limit—Maximum number of moves to a new interface per second.

action action—(Optional) Action to take when the MAC address move limit is reached:

• drop—Drop the packet and generate an alarm, an SNMP trap, or a system log entry. This is the default.
• log—Do not drop the packet but generate an alarm, an SNMP trap, or a system log entry.
• none—No action.
• shutdown—Disable the interface and generate an alarm. If you have configured the switch with the port-error-disable statement, the disabled interfaces recover automatically upon expiration of the specified disable timeout. If you have not configured the switch for autorecovery from port error disabled conditions, you can bring up the disabled interfaces by running the clear ethernet-switching port-error command.

Required Privilege Level

routing—To view this statement in the configuration.
routing–control—To add this statement to the configuration.