Chapter 17
| Address Table Commands
– 431 –
◆ The MAC address isolation profiles defined by this command only take effect
when MAC isolation is enabled globally by the mac-address-table mac-isolation
command.
◆ If the MAC address for a packet is found during source address lookup and an
isolation profile is assigned to that address, then that profile is used as the
source address isolation profile.
◆ If the MAC address for a packet is found during destination address lookup and
an isolation profile is assigned to that address, then that profile is used as the
destination address isolation profile.
◆ Packets are filtered or forwarded according to the isolation profiles shown in
the following table.
◆ MAC isolation profile cannot be set for multicast or broadcast MAC addresses.
Example
Console(config)#mac-address-table static 00-e0-29-94-34-de interface ethernet
1/1 vlan 1 isolation isolated
Console(config)#
clear mac-address-
table dynamic
This command removes any learned entries from the forwarding database.
Default Setting
None
Command Mode
Privileged Exec
Example
Console#clear mac-address-table dynamic
Console#
Table 89: MAC Address Isolation Matrix
SA Profile DA Profile
Promiscuous Isolated Community 1 Community 2
Promiscuous Forward Forward Forward Forward
Isolated Forward Drop Drop Drop
Community 1 Forward Drop Forward Drop
Community 2 Forward Drop Drop Forward
To Next Page
Loading...
