HPE Community
HPE Aruba Networking & ProVision-based
1833055 Members
2494 Online
110049 Solutions
New Discussion

Re: 2610 number of number of lockouts

 
Martin Stoyanov
Occasional Contributor

‎06-02-2011 02:32 AM

‎06-02-2011 02:32 AM

2610 number of number of lockouts

When trying to add more than two lockout-mac I got:

The maximum number of lockouts has been exceeded.

 Is it the maximum?!

0 Kudos
2 REPLIES 2
Helper
Valued Contributor

‎06-09-2011 02:25 AM

‎06-09-2011 02:25 AM

Re: 2610 number of number of lockouts

Hi,

 

On my 2610-24 running R.11.72 firmware i have no problem to configure more than two mac.

 

show run :

lockout-mac 0021f7-025df1
lockout-mac 0021f7-025df2
lockout-mac 0021f7-025df3
lockout-mac 0021f7-025df4
lockout-mac 0021f7-025df5

 

show lockout-mac
Locked Out Addresses
 0021f7-025df1
 0021f7-025df2
 0021f7-025df3
 0021f7-025df4
 0021f7-025df5
Number of locked out MAC addresses = 5

 

What is your configuration ? Firmware ?

show log -r -a maclock

 

Bye.

0 Kudos
Steve Woodward_2
Advisor

‎06-27-2011 08:03 AM

‎06-27-2011 08:03 AM

Re: 2610 number of number of lockouts

The reason you are only able to add two MAC lockouts is you have max VLANs set over 16.  I just went through this with HP support and it had to go up to the third level before someone figured it out.  They at on point said it was an issue that would need to be addressed in a future software release.  The bottom line is it's not well documented or understood.  They claim the limitation is because the switch populates tables for every VLAN possible with the locked out MACs and not just for the number of VLANs you actually have defined.

 

Here's how it works according to HP, and seems to be accurate:

"for max-vlans <=8, max lockouts is 50,

max-vlans>8 and <=16, max lockouts is 25,

max-vlans>16 and <=1024, max lockouts is 2,

1024, max lockouts is 0"

 

The 2600 switches were more generous.  Interesting that the newer switches support fewer lockouts.

0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.