Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
6773
Views
0
Helpful
6
Replies

show mac address-table question

Go to solution
yong khang NG
Level 5
Level 5

‎07-29-2012 09:37 PM - edited ‎03-07-2019 08:02 AM

Hi,

When i issue the command of "show mac addreess-table int Gx/x/x", it return the outcome as below:

vlan   mac address     type   learn     age             ports

------+----------------+--------+-----+----------+--------------------------

*   20 d4ae.5290.07ef   dynamic Yes         25   Gi1/1/1

*   20 d4ae.5290.07ed   dynamic Yes         5   Gi1/1/1

My question:

Isn't that each interface should be able see ONE and ONLY ONE MAC address? But what's the explaination could happen this situation? Is it end point binding the server NIC as teaming NIC?

thanks

Noel

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Christian Bauer
Level 1
Level 1

‎07-30-2012 02:16 AM

Hello Noel,

according to the 2 consecutive MAC-Addresses which both belong to vendor "Dell" I also agree with Eicke -

It's really sure that your connected device (I assume that there is no further switch/hub/voice-phone with integrated switch/... connected) has a bulilt in management-board which doesn't use a second RJ-45 Jack.

So there are 2 devices "hidden" behind one NIC-Port. There is something like a mini-switch-circuit inside

your host - like it is IP-Phones where you are able to connect your PC to the VoIP-Phone.

And - a Switch is able to learn many many MACs on one Port.

Imagine the uplink-port of your switch. There comes the traffic from many other machines which are not

directly connected to your switch. Your switch will learn ALL Source-MACs from these devices over the uplinke port.

Greetings,

Christian

View solution in original post

0 Helpful
6 Replies 6

Go to solution
sansarav720e
Level 1
Level 1

‎07-29-2012 09:43 PM

Dear Noel ,

          let me know for following things ,

1) This switch port is connecting to another switch or to router ??/

2) This switch port is connecting to end machine or server ??

if its connected to another switch it ll learn multiple mac address along with it own interface mac address , if is connected to server which has got VMWare installed it will show different mac address for each VMWARE instance which has got different IP Address for each instance .

HTH

Thks

Santhosh Sarav

HTH Regards Santhosh Saravanan
0 Helpful

Go to solution
Julio Carvajal
VIP Alumni
VIP Alumni

‎07-29-2012 10:34 PM

Hello Yong,

If the switch is connected to a direct host ( no running any Virtual machine instance) then you should only see one but if the switchport is connecting to another devices that stores different MAC entries then you will see more than one MAC.

You can configure port-security in order to learn just one MAC address per interface ( again if you are connecting to another device that has an ARP table then you should no do this if you want to reach the devices that are connected to that box)

Regards,

Julio

Rate all the helpful posts

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
0 Helpful

Go to solution
sansarav720e
Level 1
Level 1
In response to Julio Carvajal

‎07-29-2012 10:48 PM

Dear Yong ,

              Identify the port functionality , switch port-security applies only for the port which is connecting to end user machine , If you apply switch port security command on your uplink port which is connecting to another switch , it stop your entire network operation because it restrict MAC address only to one .

So please make sure while applying port security on your interface ..

HTH

Thks

Santhosh Sarav

HTH Regards Santhosh Saravanan
0 Helpful

Go to solution
Eicke Friedrich
Level 1
Level 1

‎07-29-2012 11:47 PM

today many end user machines (Intel, HP, Dell ...) have some kind of remote management (iLo, DRAC, Intel Management Engine ..) on board. Most of them don't have a dedicated network port so the are also connected through the system nic. So you often see two entries in mac address table. Often you can disable it through BIOS.

HTH

/Eicke

0 Helpful

Go to solution
Christian Bauer
Level 1
Level 1

‎07-30-2012 02:16 AM

Hello Noel,

according to the 2 consecutive MAC-Addresses which both belong to vendor "Dell" I also agree with Eicke -

It's really sure that your connected device (I assume that there is no further switch/hub/voice-phone with integrated switch/... connected) has a bulilt in management-board which doesn't use a second RJ-45 Jack.

So there are 2 devices "hidden" behind one NIC-Port. There is something like a mini-switch-circuit inside

your host - like it is IP-Phones where you are able to connect your PC to the VoIP-Phone.

And - a Switch is able to learn many many MACs on one Port.

Imagine the uplink-port of your switch. There comes the traffic from many other machines which are not

directly connected to your switch. Your switch will learn ALL Source-MACs from these devices over the uplinke port.

Greetings,

Christian

0 Helpful

Go to solution
yong khang NG
Level 5
Level 5
In response to Christian Bauer

‎07-30-2012 04:36 AM

thanks all for the feedback

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card