Cisco Systems ME3400G2CSA

5-27

Cisco ME 3400 EthernetAccess Switch SoftwareConfiguration Guide

78-17058-01

Chapter5 Administering the Swi tc h Managing the MAC Address Table

Follow these guidelines when disabling MAC address learning on a VLAN:

•Disabling MAC address learning on a VLAN is supported only if the switch is runnin g the metro IP

access or metro access image.

•Use caution when considering disabling MAC address learning on a VLAN with a switch virtual

interface (SVI) configured. If you disable MAC address learning on an SVI, the switch floods all I P

packets in the Layer 2 domain.

•We recommend that you disable MAC address learning only in VLANs with two ports. If you

disable MAC address learning on a VLAN with more than two ports, every packet entering the

switch is flooded in that VLAN domain.

•You cannot disable MAC address learning on a VLAN that is used internally by the switch. If the

VLAN ID that you enter is an internal VLAN, the switch generates an error message and r ejects the

command. To view internal VLANs in use by the switch, enter the show vlan internal usage

privileged EXEC command.

•If you disable MAC address learning on a VLAN configured as a private-VLAN p rima ry V LAN ,

MAC addresses are still learned on the secondary VLAN that belongs to the private VLAN and are

then replicated on the primary VLAN. If you disable MAC address learning on the secondary

VLAN, but not the primary VLAN of a private VL AN, MAC address learning occurs on the primary

VLAN and is replicated on the secondary VLAN.

•You cannot disable MAC address learning on an RSPAN VLAN. The configuration is not allowed.

•If you disable MAC address learning on a VLAN that includes a secure port, MAC address lea rning

is not disabled on the secure port. If you disable port security, the configured MAC address learning

state is active.

Beginning in privileged EXEC mode, follow these steps to disable MAC address learning on a VLAN:

To reenable MAC address learning on a VLAN, use the default mac address-table learning vlan

vlan-id global configuration command. You can also reenable MAC address learning on a VLAN by

entering the mac address-table learning vlan vlan-id global configuration command. Using the second

command causes the configuration to appear in the show running-config privileged EXEC command

display. Using the first (default) command implies a return to a default co ndition an d theref ore does n ot

appear in the output from the show running-config command.

This example shows how to disable MAC address learning on VLAN 200:

Switch(config)# no mac address-table learning vlan 200

You can display the MAC address learning status of all VLANs or a specified VLAN by entering the

show mac-address-table learning [vlan vlan-id] privileged EXEC command.

Command Purpose

Step1 configure terminal Enter global configuration mode.

Step2 no mac address-table learning vlan

vlan-id Disable MAC address learning on the specified VLAN. Valid VLAN IDs

are 1 to 4094.

Step3 end Return to privileged EXEC mode.

Step4 show mac address-table learning [vlan

vlan-id]Verify the configuration.

Step5 copy running-config startup-config (Optional) Save your entries in the configuration file.