[nsp] MAC address removal

Alban Dani adani at stevens.edu
Tue Nov 11 15:10:09 EST 2003


Please disregard my response. I had the wrong understanding of the
output of that command. I got it right now.

Thanks again.

Alban Dani
Network Enginner
Stevens Institute Of Technology
Tel: 201 216 8283
e-mail: adani at stevens-tech.edu

-----Original Message-----
From: David Sinn [mailto:dsinn at dsinn.com] 
Sent: Tuesday, November 11, 2003 2:46 PM
To: Alban Dani
Subject: Re: [nsp] MAC address removal

Removing a MAC entry from a switch will cause the switch to flood
traffic to
that MAC out all ports in the associated VLAN.  So you don't really stop
them from working.

If you are trying to stop them from being bad, you have a couple of
options:

Since are are on a router you can route their /32 to null0
If you want to stop them on the LAN segment, you can point their MAC out
the
wrong port with a static entry (Native mode:  mac-address static
1234.5678.90af vlan 1 int g1/1).

Hope that helps.

David


On 11/11/03 11:31 AM, "Alban Dani" <adani at stevens.edu> wrote:

> I have a catalyst 6500 running IOS Version 12.1(19)E1.
> 
> 
> 
> I am trying to find out how to remove/filter a particular mac address
> (say somebody who's being nasty)
> 
> from the switch mac address table and keep it out for a certain amount
> of time.
> 
> 
> 
> I know people have successfully done something similar in 6500 using
Cat
> OS.
> 
> 
> 
> thanks
> 
> 
> 
> Alban 
> 
> 
> 
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/




More information about the cisco-nsp mailing list