Introduction to the BayStack 410-24T Switch309985-C Rev 00 1-15MAC Address-Based SecurityThe MAC address-based security feature allows you to set up network accesscontrol, based on source MAC addresses of authorized stations.You can:• Create a list of up to 448 MAC addresses and specify which addresses areauthorized to connect to your switch or stack configuration. The 448 MACaddresses can be configured within a single standalone switch or they can bedistributed in any order among the units in a single stack configuration.• Specify which of your switch ports each MAC address is allowed to access.The options for allowed port access include: NONE, ALL, and single ormultiple ports that are specified in a list, for example, 1/1-4,1/6,2/9 (see “PortList Syntax” on page 3-34).• Specify optional actions to be exercised by your switch if the software detectsa security violation.The response can be to send a trap, turn on destination address (DA) filtering,disable the specific port, or any combination of these three options.For instructions on using the console interface (CI) to set up network accesscontrol, see “MAC Address-Based Security” on page 3-23.The MAC address-based security feature is based on Nortel NetworksBaySecure™ LAN Access for Ethernet, a real-time security system that safeguardsEthernet networks from unauthorized surveillance and intrusion.To learn more about Nortel Networks BaySecure LAN Access for Ethernet, referto the Bay Networks Guide to Implementing BaySecure LAN Access for Ethernet(Part number 345-1106A).