Solved

Cisco Catalyst - Show MAC address of all connected devices

Posted on 2013-05-16
3
1,937 Views
Last Modified: 2013-05-18
Hello,

I have a Cisco infrastructure setup with several switches connecting to a CORE infrastructure:

Cisco Catalyst 3750: Core
Cisco Catalyst 3560#1:  PC Switch
Cisco Catalyst 3560#2:  PC Switch
Cisco Catalyst 3560#3:  PC Switch
Cisco Catalyst 3560#4:  PC Switch
Cisco Catalyst 3560#5:  PC Switch
Cisco Catalyst 3560#6:  PC Switch

- Each switch is connected to the 3750 core via a (2) port port-channel group (port-channel group 1 going to switch 1, port-channel group 2 going to switch 2, etc...).
- The Core switch has 10 VLANs configured on it, and is setup in layer 3 mode.
- The Core switch is setup as VTP server.
- Every switch is setup as VTP client, so all VLAN's in the core are available to all switches.
- 90% of the environment is on a PC VLAN (VLAN 100).
- 10% of the environment (servers) is setup on a SERVER VLAN (VLAN 2)
- Each switch (other than the Core) has an IP address on the server VLAN for management (192.168.2.11 for switch 1, 192.168.2.12 for switch 2, etc...)
- The Core switch has an IP interface for each VLAN:
     . VLAN 100 = 192.168.100.1/24
     . VLAN 2 = 192.168.2.1/24
     . Default route of the Core switch is to the firewall, 192.168.2.254
- Every VLAN interface that is servicing clients that need dynamic addressing has an "ip-helper" address setup on the IP interface pointing to the (2) DHCP servers serving the clients (192.168.2.100, 192.168.2.101)
- Most ports are setup as "Switchport access VLAN 100".

Everything is working fine as far as routing and DHCP addressing goes.  Today, however, I was trying to track down what port a particular client is in and I was not able to track it down.  Here's what I was trying to do:

1. From management station, ping NetBios name of PC to get IP address.  Received 192.168.100.54.
2.  Connected to CLI of Core Switch, did "show arp | include 192.168.100.54" and got the MAC address of 192.168.100.54.
3.  From CLI of Core switch, did, "show mac address-table | include [mac address]" and got "100        [MAC address]      DYNAMIC         Po2"  which tells me it's in VLAN100 (as expected), the MAC address (as expected), the type of address (DYNAMIC, as expected, as it was learned from a connected device) and the port that it was learned from (port-channel 2, which tells me this client should be connected to switch #2).
4.  Connected to CLI of switch #2, did, "show mac address-table | inc [mac address]" and received the same message of "100        [MAC address]      DYNAMIC         Po2".

At each switch, we name the port-channel group the same as the port-channel group servicing the switch from the core so that it's easy to follow frontwards and backwards.

Why can I not track down the MAC address of the clients that are connected to my distribution switches?  Is there a better way to be setup?  Is it setup wrong?  Or is there another command to list all of the MAC addresses of connected clients?  I seem to remember viewing a CAM table long ago, but cannot find any references to a command doing this.  

Help is appreciated, thanks!
0
Comment
Question by:jkeegan123
  • 2
3 Comments
 
LVL 28

Expert Comment

by:asavener
ID: 39172522
Show mac-address-table is essentially the same data as the CAM table; it's just in human-readable format.

The MAC address table is always local to the switch, so I don't know of a way to locate a particular MAC address in a particular switch without doing something similar to what you just described.

I suppose there's a way to script it or to pull the info from SNMP.
0
 
LVL 5

Author Comment

by:jkeegan123
ID: 39172700
what is the command to view the CAM table?
0
 
LVL 28

Accepted Solution

by:
asavener earned 500 total points
ID: 39172732
Depends on the version that you're running.

"show cam dynamic" worked on the CATOS switches.

"show mac-address-table" is probably what you want to use, though.
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
Cisco 2960 PACL 9 41
vm nic duplex 1 46
KVM switch 7 25
HSRP needed? 4 31
This tutorial will go through the steps required to write a script that will back up the configuration settings of a HP-ProCurve switch. You will need to get the following things to follow this tutorial: Telnet Scripting Tool e.g. TST10.exe …
The use of stolen credentials is a hot commodity this year allowing threat actors to move laterally within the network in order to avoid breach detection.
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now