When traffic gets process switched on a 6500 for whatever reason instead of CEF, what would show up in the source/dest MAC address fields? On my 6500, I have a sniffer set up to sniff 15/1 and can see communication between two hosts on different vlan as under:
vlan 5: 220.127.116.11
vlan 6: 18.104.22.168
In the packet capture, I see a packet with these IP/MAC details:
source IP: 22.214.171.124
dest IP: 126.96.36.199
Source MAC: VLAN5 SVI MAC ADDRESS
Dest MAC: MAC address of host 188.8.131.52
Is this normal behavior or should the source MAC have been the MAC address of host 184.108.40.206?
It sounds to me like normal behavior. In the typical layer 3/routing scenario the end stations builds a frame which has the source IP address as its address, has the destination IP address as the real destination address (and these addresses do not change as the frame gets forwarded), has its own MAC as the source MAC and has its default gateway (the SVI) as the destination MAC. In the process of forwarding the layer 3 device leaves the source and destination IP addresses alone but forwards the frame with its own MAC as the source MAC and the next hop MAC as the destination MAC. It sounds to me like this is what you are describing (with the exception that I would expect the source MAC to be the VLAN 6 MAC and you describe it as the VLAN 5 MAC).
thanks for your response. I have another general question about how MLS functions. If there is a packet for a destination which isn?t directly connected to one of the MSFC SVI?s, will it always get process switched?
Does MLS only work for packets that are directly connected to the VLAN interfaces. Hence, what happens when a source is directly connected to vlan2 but the destination is behind a router and the router itself is connected to vlan5. Will those get fast-switched too?
In the 6500 running anywhere near recent code MLS works with CEF (assuming that your configuration has not done something to disable it) and packets for a remote destination are CEF switched (even better than fast switched). There certainly is not anything that limits fast switching to destinations that are locally connected.
We are pleased to announce availability of Beta software for 16.6.3.
16.6.3 will be the second rebuild on the 16.6 release train targeted
towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are
looking for early feedback from customers befor...
Introduction Featured Speakers Luis Espejel is the Telecommunications
Manager of IENova, an Oil & Gas company. Currently he works with Cisco
IOS® and Cisco IOS XE platforms, and NX to some extent. He has also
worked as a Senior Engineer with the Routing P...
In this session you can learn more about Layer 3 multicast and the best
practices to identify possible threats and take security measures. It
provides an overview of basic multicast, the best security practices for
use of this technology, and recommendati...