02-22-2019 07:54 AM
We have LACP aggregate connection to the switch.
is there any way i can learn the mac address of the switch port itself on the PA ?
Right now PA only shows me mac address of chassis of the switch.
02-25-2019 04:43 AM
I may be misunderstanding the question, but isn't the firewall just learning the mac to the relevant IP addresses it is communicating with. unless the switch ports have an IP associated to it and performing L3 functions, the firewall wouldn't need to know their mac
02-25-2019 08:57 AM - edited 02-25-2019 08:30 PM
we have point to point link with switch
show lacp aggregate-ethernet ae3
LACP:
**********************************************************************************
AE group: ae3
Members: Bndl Rx state Mux state Sel state
ethernet1/18 yes Current Tx_Rx Selected
ethernet1/17 yes Current Tx_Rx Selected
Status: Enabled
Mode: Passive
Rate: Slow
Max-port: 8
Fast-failover: Disabled
Pre-negotiation: Disabled
Local: System Priority: 32768
System MAC: 00:86:9c:37:58:01
Key: 18
Partner: System Priority: 0
System MAC: e8:e7:32:51:0e:40
Key: 1
Port State
--------------------------------------------------------------------------------
Interface Port
Number Priority Mode Rate Key State
--------------------------------------------------------------------------------
ethernet1/18 81 32768 Passive Slow 18 0x3C
Partner 1024 0 Active Fast 1 0x3F
ethernet1/17 80 32768 Passive Slow 18 0x3C
Partner 1088 0 Active Fast 1 0x3F
Port Counters
--------------------------------------------------------------------------------
Interface LACPDUs Marker Marker Response Error
Sent Recv Sent Recv Sent Recv Unknown Illegal
--------------------------------------------------------------------------------
ethernet1/18 316426 10549 0 0 0 0 0 0
ethernet1/17 316441 10550 0 0 0 0 0 0
02-25-2019 08:35 PM
in our setup switch port has layer 3 IP address.
Yes you got it right i mean to say exactly what you said below
isn't the firewall just learning the mac to the relevant IP addresses it is communicating with
02-26-2019 06:51 AM
have you tried > show arp all
02-26-2019 07:49 AM
it only shows mac address of switch chassis not actual switch interface
02-28-2019 08:46 PM
is that default behaviour?
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
