Chapter 1 MAC Address Table Management Configuration Guide

1.1 Configuring MAC Address Table Management

1.1.1 Network Diagram

Figure 1-1 Network diagram for MAC address table management

1.1.2 Networking and Configuration Requirements

Server is connected to Switch through port GigabitEthernet 1/0/2. Configure a static MAC address entry of Server on Switch, so that Switch always unicasts rather than broadcasts packets destined for Server through GigabitEthernet 1/0/2. Port GigabitEthernet 1/0/10 is connected with a network management server (NMS). For network management security, configure GigabitEthernet 1/0/10 to permit the access of this NMS only.

l The MAC address of Server is 000f-e20f-dc71

l Port GigabitEthernet 1/0/2, GigabitEthernet 1/0/5, and GigabitEthernet 1/0/10 belong to VLAN 10

l The MAC address of NMS is 0014-222c-aa69

l Set the aging time of MAC address entries on Switch to 500 seconds

1.1.3 Applicable Product Matrix

Product series	Software version	Hardware version
S3610 Series Ethernet Switches	Release 5301	All versions
S5510 Series Ethernet Switches	Release 5301	All versions
S5500-SI Series Ethernet Switches	Release 1207	All versions except S5500-20TP-SI
S5500-SI Series Ethernet Switches	Release 1301	S5500-20TP-SI
S5500-EI Series Ethernet Switches	Release 2102	All versions
S7500E Series Ethernet Switches	Release 6100	All versions

1.1.4 Configuration Procedure

# Create VLAN 10, and add ports GigabitEthernet 1/0/2, GigabitEthernet 1/0/5, and GigabitEthernet 1/0/10 to VLAN 10.

<Sysname> system-view

[Sysname] vlan 10

[Sysname-vlan10] port GigabitEthernet1/0/2 GigabitEthernet1/0/5 GigabitEthernet1/0/10

# Add a static MAC address entry.

[Sysname] mac-address static 000f-e20f-dc71 interface GigabitEthernet 1/0/2 vlan 10

# Set the aging time of dynamic MAC address entries on Switch to 500 seconds.

[Sysname] mac-address timer aging 500

# Display the configuration of MAC address table in system view.

[Sysname] display mac-address interface GigabitEthernet 1/0/2

MAC ADDR VLAN ID STATE PORT INDEX AGING TIME(s)

000f-e20f-dc71 1 Config static GigabitEthernet1/0/2 NOAGED

00e0-fc17-a7d6 1 Learned GigabitEthernet1/0/2 AGING

00e0-fc5e-b1fb 1 Learned GigabitEthernet1/0/2 AGING

00e0-fc55-f116 1 Learned GigabitEthernet1/0/2 AGING

--- 4 mac address(es) found on port GigabitEthernet1/0/2 ---

# Disable GigabitEthernet 1/0/10 from learning MAC addresses dynamically, and add a static MAC address entry, so that port GigabitEthernet 1/0/10 can forward only the packets sent by NMS, and other hosts cannot communicate through this port.

[Sysname] interface GigabitEthernet 1/0/10

[Sysname-GigabitEthernet1/0/10] port access vlan 10

[Sysname-GigabitEthernet1/0/10] mac-address max-mac-count 0

[Sysname-GigabitEthernet1/0/10] mac-address static 0014-222c-aa69 vlan 10

1.1.5 Complete Configuration

mac-address timer aging 500

vlan 10

interface GigabitEthernet1/0/2

port access vlan 10

mac-address static 000f-e20f-dc71 vlan 10

interface GigabitEthernet1/0/5

port access vlan 10

interface GigabitEthernet1/0/10

port access vlan 10

mac-address max-mac-count 0

mac-address static 0014-222c-aa69 vlan 10

1.1.6 Configuration Guidelines

Do not configure a static and dynamic MAC address entry on an aggregation port.

Table of Contents

08-MAC Address Table Management Configuration Guide

Chapter 1 MAC Address Table Management Configuration Guide

1.1 Configuring MAC Address Table Management

1.1.1 Network Diagram

1.1.2 Networking and Configuration Requirements

1.1.3 Applicable Product Matrix

1.1.4 Configuration Procedure

1.1.5 Complete Configuration

1.1.6 Configuration Guidelines