HP VPN Firewall Appliances Network Management Configuration Guide
57
Hardware Com
p
atibilit
y
F1000-A-EI/F1000-S-EI Yes
F1000-E No
F5000 No
F5000-S/F5000-C Yes
VPN firewall modules No
20-Gbps VPN firewall modules No
As the MAC address table grows, the forwarding performance of your device might degrade. To prevent
the MAC address table from getting so large that the forwarding performance degrades, you can limit
the number of MAC addresses that a port can learn.
To configure the MAC learning limit on a Layer 2 Ethernet interface or Layer 2 aggregate interface:
Ste
p
Command
Remarks
1. Enter system view.
system-view N/A
2. Enter Layer 2 Ethernet or Layer 2
aggregate interface view.
interface interface-type
interface-number
Settings in Layer 2 Ethernet or Layer 2
aggregate interface view take effect
only on the specific interface.
3. Configure the MAC learning limit on
the interface or port group, and
configure whether or not frames
with unknown source MAC
addresses can be forwarded when
the MAC learning limit is reached.
mac-address
max-mac-count { count |
disable-forwarding }
The default MAC learning limit varies
with devices.
By default, frames with unknown
source MAC addresses are forwarded
when the MAC learning limit is
reached.
Displaying and maintaining MAC address tables
Task Command
Remarks
Display MAC address table
information.
display mac-address [ mac-address [ vlan vlan-id ] |
[ [ dynamic | static ] [ interface interface-type
interface-number ] | blackhole ] [ vlan vlan-id ] [ count ] ]
[ | { begin | exclude | include } regular-expression ]
Available in any
view.
Display the aging timer for
dynamic MAC address
entries.
display mac-address aging-time [ | { begin | exclude |
include } regular-expression ]
Available in any
view.
MAC address table configuration example
Network requirements
As shown in Figure 38:
• The MAC address of Host A is 000f-e235-dc71 and belongs to VLAN 1. It is connected to
GigabitEthernet 0/1 of the device. To prevent MAC address spoofing, add a static entry for the host
in the MAC address table of the device.