Quick Reference Guide

ManualsBrandsDell ManualsComputer equipmentPowerConnect B-TI24x

211

212

213

214

215

216

217

218

219

220

PowerConnect B-Series TI24X Configuration Guide 183

53-1002269-02

Defining MAC address filters

NOTE

If you apply a filter group to a port that already has a filter group applied, the older filter group is

replaced by the new filter group.

When a MAC filter is applied to or removed from an interface, a Syslog message such as the

following is generated.

SYSLOG: <14>Jan 1 00:00:00 10.44.9.11 MAC Filter applied to port 2 by tester from

telnet session (filter id=5 ).

SYSLOG: <14>Jan 1 00:00:00 10.44.9.11 MAC Filter removed from port 2 by tester

from telnet session (filter id=5 ).

The Syslog messages indicate that a MAC filter was applied to the specified port by the specified

user during the specified session type. Session type can be Console, Telnet, SSH, SNMP, or others.

The filter IDs that were added or removed are listed.

Enabling logging of management traffic

permitted by MAC filters

You can configure the device to generate Syslog entries and SNMP traps for management traffic

that is permitted by MAC filters. Management traffic applies to packets that are destined for the

CPU, such as control packets. You can enable logging of permitted management traffic on a global

basis or an individual port basis.

The first time an entry in a MAC filter permits a management packet and logging is enabled for that

entry, the software generates a Syslog message and an SNMP trap. Messages for management

packets permitted by MAC filters are at the warning level of the Syslog.

When the first Syslog entry for a management packet permitted by a MAC filter is generated, the

software starts a five-minute timer. After this, the software sends Syslog messages every five

minutes. The messages list the number of management packets permitted by each MAC filter

during the previous five-minute interval. If a MAC filter does not permit any packets during the

five-minute interval, the software does not generate a Syslog entry for that MAC filter.

NOTE

For a MAC filter to be eligible to generate a Syslog entry for permitted management packets, logging

must be enabled for the filter. The Syslog contains entries only for the MAC filters that permit

packets and have logging enabled.

When the software places the first entry in the log, the software also starts the five-minute timer for

subsequent log entries. Thus, five minutes after the first log entry, the software generates another

log entry and SNMP trap for permitted management packets.

Configuration notes

MAC filter logging is supported in thePowerConnect B-Series TI24X devices.

These devies support MAC filter logging of management traffic only.

Command syntax

To configure MAC filter logging globally, enter the following CLI commands at the global CONFIG

level.