is there a way to see/log MAC address table activity and history?

  • 1
  • Question
  • Updated 5 months ago
  • Answered
I use Brocade ICX 6450 switches and sometimes my end-users will unplug devices, move them to different ports and so on

 

it would be helpful to have a log of port and MAC address activity/changes. Is it possible?
Photo of jerry ku

jerry ku

  • 1 Post
  • 0 Reply Likes

Posted 5 months ago

  • 1
Photo of Andrew Giancola

Andrew Giancola

  • 99 Posts
  • 27 Reply Likes
we chased this rabbit a few weeks ago. use 802.1x or NAC to control and log.
https://www.ruckuswireless.com/products/software-and-saas/cloudpath
I edited this and added Ruckus's security offering.
(Edited)
Photo of Ben

Ben, Employee

  • 79 Posts
  • 23 Reply Likes
Photo of Jijo Panangat

Jijo Panangat, Employee

  • 27 Posts
  • 9 Reply Likes
Hello Jerry,

Here is a sample config and its output.


The following example enables notification of MAC address moves and sends an SNMP trap when any MAC address moves to a different port five times in a 10-second interval.

CX6430-24 Switch(config)#mac-movement notification threshold-rate 5 sampling-interval 10

ICX6430-24 Switch(config)#show notification mac-movement threshold-rate 

Threshold-Rate Mac Movement Notification is ENABLED

Configured Threshold-Rate : 5 moves

Configured Sampling-Interval : 10 seconds

Number of entries in the notification table : 0

MAC-Address    from-Port    to-Port           Last Move-Time   Vlan-id
-------------- ---------    -------           --------------   -------