We have a customer who gets the mac address tables filled in their Nexus 7000 switches. They have two WLC 5508 controllers connected to Nexus 7000 and it´s the wireless vlan that fills the MAC address tables. The Nexus 7000 supports 16,000 MAC addresses as they are configured today. They get a lot of lines in the MAC address table with "aging time 0" I wonder what generates the lines? Is it the "sleeping clients" feature in WLC 5508 that causes the mac address lines with "aging time 0"? It seems like mac addresses with the "aging time 0" not can be removed from the MAC Address table. Considering moving the controllers to 6800 switches instead. Anyone have a solution to this?
Hardware Nexus 7000:
n7k# sh module
Mod Ports Module-Type Model Status
--- ----- ----------------------------------- ------------------ ----------
1 32 1/10 Gbps Ethernet Module N7K-F132XP-15 ok
2 8 10 Gbps Ethernet XL Module N7K-M108X2-12L ok
5 0 Supervisor Module-1X N7K-SUP1 active *
Mod Sw Hw
--- -------------- ------
1 6.2(10) 1.2
2 6.2(10) 1.5
5 6.2(10) 2.2
Xbar Ports Module-Type Model Status
--- ----- ----------------------------------- ------------------ ----------
1 0 Fabric Module 1 N7K-C7010-FAB-1 ok
2 0 Fabric Module 1 N7K-C7010-FAB-1 ok
3 0 Fabric Module 1 N7K-C7010-FAB-1 ok
The entire MAC address table:
n7k# sh mac address-table count
MAC Entries for all vlans :
Dynamic Address Count: 13712
Overlay Address Count: 0
Static Address (User-defined) Count: 0
Secure Address Count: 0
MAC address table per wireless vlan:
n7k# sh mac address-table count vlan 500
MAC Entries for all vlans :
Dynamic Address Count: 3676
Static Address (User-defined) Count: 0
Secure Address Count: 0
n7k# sh mac address-table count vlan 501
MAC Entries for all vlans :
Dynamic Address Count: 1813
Static Address (User-defined) Count: 0
Secure Address Count: 0
n7k# sh mac address-table count vlan 502
MAC Entries for all vlans :
Dynamic Address Count: 1351
Static Address (User-defined) Count: 0
Secure Address Count: 0
n7k# sh mac address-table count vlan 503
MAC Entries for all vlans :
Dynamic Address Count: 1766
Static Address (User-defined) Count: 0
Secure Address Count: 0
n7k# sh mac address-table count vlan 504
MAC Entries for all vlans :
Dynamic Address Count: 1756
Static Address (User-defined) Count: 0
Secure Address Count: 0
Mac address table vlan 500:
n7k# show mac address-table vlan 500 hardware-age
Legend:
* - primary entry, G - Gateway MAC, (R) - Routed MAC, O - Overlay MAC
age - seconds since last seen,+ - primary entry using vPC Peer-Link,
(T) - True, (F) - False , ~~~ - use 'hardware-age' keyword to retrieve
age info
VLAN MAC Address Type age Secure NTFY Ports/SWID.SSID.LID
---------+-----------------+--------+---------+------+----+------------------
G 500 0000.0c9f.faf1 static - F F sup-eth1(R)
G 500 64a0.e73e.4241 static - F F sup-eth1(R)
* 500 64a0.e742.3ec1 static - F F 4.0.2594
* 500 0006.7821.a97e dynamic 0 F F Po11
* 500 0006.f662.77af dynamic 0 F F Po11
* 500 0008.cac6.0cf4 dynamic 0 F F Po11
* 500 000e.8e4a.253d dynamic 0 F F Po11
* 500 0017.a714.4cc2 dynamic 0 F F Po11
* 500 001d.e08e.6549 dynamic 0 F F Po11
* 500 0021.85f6.2bce dynamic 0 F F Po11
Logg messages:
At 90%:
2016 Jan 19 13:02:16 n7k %MTM-SLOT1-2-VDC_FE_MAC_TBL_HWM_WARNING: MAC table t
hreshold reached for FE 4. MAC table is 90 percent full
At 100%:
2016 Jan 27 12:12:25 n7k %M2FIB-SLOT1-2-M2FIB_MAC_TBL_PRGMING: Failed to prog
ram the mac table on FE 0 for group: FTAG 2, (152 (BD 32), *, 239.255.255.250).
Error: MAC Table is Full for this entry. To avoid multicast traffic loss, disa
ble OMF using the CLI: "no ip igmp snooping optimise-multicast-flood"