Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
7206
Views
5
Helpful
2
Replies

Please explain output from "show mac address-table int g2/0/14"

mikik
Level 1
Level 1

‎06-15-2010 12:47 AM

Hi:

On a blade center switch WS-CBS3110G-S-I  i entered the following command:

show mac address-table int g2/0/14.

I received the following output:

BladeSw#sho mac address-table int g2/0/14

          Mac Address Table

-------------------------------------------

Vlan    Mac Address       Type        Ports

----    -----------       --------    -----

2000    0021.5e99.b690    BLOCKED     Gi2/0/14

4095    0021.5e9d.b670    DYNAMIC     Gi2/0/14

  10    0021.5e99.b690    DYNAMIC pv  Gi2/0/14

Total Mac Addresses for this criterion: 3

1. What does the type BLOCKED mean?  The port is not blocked neither from a security point of view ( no port security defined) and not

     from a spanning tree point of view. It is an edge port and in a forwarding state.  So what and why is is it blocked?

2. What is Vlan 4095 ?  I have no definitions for this Vlan - none not primary not private nothing. So where does this number come from ?

The answers may be relevant to why the server on this port is unreachable ( no ping ).

The  interface state is up up. It is defined to be in private vlan 2000 which is in primery vlan 10 and is of type isolated.

Thanks for any help

Mickey

Labels:
0 Helpful
2 Replies 2

Jaya Prakash
Level 1
Level 1

‎06-15-2010 05:35 AM

Hi Mickey,

          VLAN 0 & 4095 are reserved VLANs for system internal use. Vlan 4095 is also called discard VLAN. and it is usually exists in VMware environment. It is also used for blade switch management some times.

And as the port is configured for a private VLAN, the MAC address of the end host is being learned in both isolated and promiscious VLANs.

It is BLOCKED in vlan 2000 because this VLAN is an isolated VLAN.So, to prevent any communication with other hosts in this VLAN , the MAC address will be in blocked state.

This port is allowed to communicate with promiscious vlan ports and hence the same MAC address is being learned in VLAN 10 as well.

HTH!!!

-JP

mikik
Level 1
Level 1
In response to Jaya Prakash

‎06-15-2010 05:54 AM

Hi Jaya;

thanks for the explanation. As such it seems that my config is OK and have

to look further for the problem.

Again thanks.

Regards

Michael 94 Derech Em-Hamoshavot (Embedded

Koenigstein image moved

to file:

pic17040.gif)

Networking Kiryat Arie,,

Specialist Petach-Tikva 49527

4ICS04 Israel

Global

Business

Services

Phone: +972-52-2554653

Mobile: +972-52-2554653

e-mail: xmk@il.ibm.com

|

Preview file
1 KB
0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card