Login
- Table of Contents
-
- 07-System
- 01-High availability group
- 02-VRRP
- 03-Track
- 04-BFD
- 05-NQA
- 06-Basic log settings
- 07-Email server
- 08-Session log settings
- 09-NAT log settings
- 10-AFT log settings
- 11-Sandbox log settings
- 12-Threat log settings
- 13-Application audit log settings
- 14-NetShare log settings
- 15-URL filtering log settings
- 16-Attack defense log settings
- 17-Reputation log settings
- 18-Bandwidth alarm logs
- 19-Configuration log settings
- 20-Security policy log
- 21-Terminal identification logging
- 22-Heartbeat log settings
- 23-WAF log settings
- 24-IP access logs
- 25-MAC access log
- 26-Load balancing logging
- 27-Bandwidth management logs
- 28-Context rate limit logging
- 29-Zero trust logs
- 30-Report settings
- 31-Session settings
- 32-Signature upgrade
- 33-Software upgrade
- 34-License management
- 35-IRF
- 36-IRF advanced settings
- 37-Contexts
- 38-Administrators
- 39-Date and time
- 40-MAC address learning through a Layer 3 device
- 41-SNMP
- 42-Configuration management
- 43-Reboot
- 44-About
- 45-Ping
- 46-Tracert
- 47-Packet capture
- 48-Webpage Diagnosis
- 49-Diagnostic Info
- 50-Packet trace
- 51-Load balancing test
- 52-IPsec diagnosis
- 53-Fast Internet Access
- Related Documents
-
| Title | Size | Download |
|---|---|---|
| 40-MAC address learning through a Layer 3 device | 27.50 KB |
MAC address learning through a Layer 3 device
Introduction
This feature enables the device to learn the MAC address of a terminal (a PC for example) when a Layer 3 device (typically a gateway) exists between the device and the terminal for network traffic control.
Figure 1 MAC address learning through a Layer 3 device workflow
As shown in Figure 1, MAC address learning through a Layer 3 device proceeds as follows:
2. The Layer 3 device learns the IP-MAC binding of the terminal, and then generates an ARP entry.
3. The device sends SNMP requests to the Layer 3 device at the specified intervals to request the ARP entry.
4. The Layer 3 device sends a response that contains the ARP entry.
5. Upon receiving the response, the device saves the ARP entry in the memory. Then it can learn the MAC address of the terminal.
Restrictions and guidelines
· Make sure the Layer 3 device supports SNMPv2c or SNMPv3, has SNMP agent enabled, and has a community name configured.
· Only MAC addresses mapped from IPv4 addresses can be learned.
· Make sure no NAT devices exist between the device and the Layer 3 device.
· This feature is not applicable to a VRF network.
Configure MAC address learning through a Layer 3 device
Procedure
1. Select System > Maintenance > MAC Learning Through L3 Device > L3 Device Access Setting.
2. Click Enable to enable MAC address learning through a Layer 3 device.
3. (Optional.) Set the polling interval and idle timeout
Table 1 Configuration items for MAC address learning through a Layer 3 device
|
Item |
Description |
|
Polling interval |
Interval for sending SNMP requests, in seconds |
|
Idle timeout |
Idle timeout for SNMP responses, in seconds |
4. Click Apply.
5. Add a Layer 3 device:
a. Click Add.
b. Configure the following settings:
|
Item |
Description |
|
SNMP version |
SNMP version. Options include v2c and v3. |
|
IP address |
IP address of the target Layer 3 device, typically the gateway of the terminal network. Only IPv4 addresses are supported. |
|
Community name (SNMPv2c) |
Devices in a community use a community name for authentication. The device can communicate with the Layer 3 device only if it has the same community name as the SNMP agent on the Layer 3 device. |
|
Username (SNMPv3) |
Authentication can be performed only if the device and the SNMP agent on the Layer 3 device have the same username. |
|
Authentication algorithm |
For a successful authentication, make sure these settings are the same as those on the SNMP agent of the Layer 3 device. |
|
Authentication password |
|
|
Encryption algorithm |
|
|
Encryption password |
6. Click OK.
