I have a scenario where I'd like to fill up the N7010 CAM table using Kali Linux. Kali is installed on my macbook air as a VM and i've bridged the interface to provide my VM access to the nic. When i use macof to generate tonnes of traffic from numerous src mac/dst mac, src ip/dst ip, i do not see anything in the mac address table on the N7010 (SUP2E). But i do see traffic entering the port when i take a look at the statistics. 4000pps at approx 5mbps. So i know traffic is coming in.
All i saw on the mac address table was my physical mac nic, and my VM nic. Nothing else from the packets/frames generated by my VM.
Is it that nxos is using conversational mac learning - is this by default, or is it off?
I tried to see if I could see the traffic being broadcast on other ports in the same vlan, but tcpdump showed nothing, just usual cdp/stp from the switch.
I did the very same test on a Cisco 3560, and i was able to fill up the CAM table.
Is there a difference in the way these devices/asics handle such frames?
Please rate useful posts & remember to mark any solved questions as answered. Thank you.
Macof does not work on nxos with default configuration because the forwarding engine performs packet sanity checks (its form of IDS). The forwarding engine, (switch on chip) SoC sits on the F2 line card itself. This makes sense when we do no see any broadcast from other ports.
Inviting all network professionals in operations! We'd like to understand what would be valuable for you in a mobile application. Your response will help Cisco improve a product feature that could benefit you. Thanks!
Click here to take the sur...
Cisco’s software-defined wide area network (SD-WAN) solution allows user to quickly and seamlessly establish an overlay fabric to connect an enterprise’s data centers, branch and campus locations, as well as colocation facilities in order to imp...
1. Log into CLI of DNAC:
ssh maglev@< DNAC appliance IP> -p 2222
2. Run this curl command to get token to get member id:
curl -X POST -u admin:<admin user password> -H -V https://<CLUSTER-IP>/api/system/v1/identitymgmt/token
Enterprise Switching Business Unit is glad to announce Beta release 16.12.2 for all Catalyst 9200/9300/9400/9500/9600 and Catalyst 3650/3850 Platforms. This release is made available to allow users to test, evaluate and share fee...
Purpose of the document
This document describes the general recommendations or best practices when designing and deploying the Cisco SD-Access technology. The document assumes that the reader has a general overview of Cisco's SD-Access for Distributed C...