К стати. Например, Firmware: Build 2.41.B03
Делаем:
Код:
config address_binding ip_mac ports 1-24 state enable strict allow_zeroip enable forward_dhcppkt enable mode arp stop_learning_threshold 5
Затем, после того как на порт прилетает 5 разных MAC-адресов
Цитата:
....
1142 2009-12-27 00:35:51 Unauthenticated IP-MAC address and discarded by ip mac port binding (IP: 172.16.116.146, MAC: 00-1D-92-2B-AB-BF, Port: 5)
1141 2009-12-27 00:35:51 Unauthenticated IP-MAC address and discarded by ip mac port binding (IP: 172.16.116.146, MAC: 00-1D-92-2B-DA-AB, Port: 5)
1140 2009-12-27 00:35:51 Unauthenticated IP-MAC address and discarded by ip mac port binding (IP: 172.16.116.146, MAC: 00-1D-92-2B-9C-57, Port: 5)
1139 2009-12-27 00:35:50 Unauthenticated IP-MAC address and discarded by ip mac port binding (IP: 172.16.116.146, MAC: 00-1D-92-2B-27-7E, Port: 5)
1138 2009-12-27 00:35:45 Unauthenticated IP-MAC address and discarded by ip mac port binding (IP: 172.16.116.146, MAC: 00-1D-92-2B-ED-85, Port: 5)
Порт перестает изучать MAC-адреса
Цитата:
DES-3028:4#sh add p
Command: show address_binding ports
Port State Mode Zero IP DHCP Packet Stop Learning
Threshold/Mode
---- -------- ---- --------- ----------- --------------
1 Strict ARP Allow Forward 5 /Normal
2 Strict ARP Allow Forward 5 /Normal
3 Strict ARP Allow Forward 5 /Normal
4 Strict ARP Allow Forward 5 /Normal
5 Strict ARP Allow Forward 5 /Stop!
.....
Неплохо бы писать в лог и(или) слать трап по этому событию, а так же можно бы было менять статус в
show ports <portlist>.
Например сделать так:
Код:
Port State/ Settings Connection Address
MDI Speed/Duplex/FlowCtrl Speed/Duplex/FlowCtrl Learning
----- -------- --------------------- --------------------- --------
5 Enabled Auto/Disabled 100M/Full/None StopByAddrBind
Auto
Было бы вообще хорошо
Вход
Регистрация
FAQ
Поиск
