Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

CAM table flush timer for OOB NAC

Please let me know what is the advantge of inceasing the CAM table flush timer on switches , while implementing NAC OOB.

3 REPLIES
Bronze

Re: CAM table flush timer for OOB NAC

When you are Configuring SNMP setting on the switch to send traps to the NAC Manager which facilitates the tracking of port and CAM table status you will be increasing the default CAM table entry flush timer to 1 hour as per Cisco best practice recommendations for NAC OoB using the following command:

mac-address-table aging-time 3600

Re: CAM table flush timer for OOB NAC

Thanks but still didnt got why to increase the CAM table aging time?

New Member

Re: CAM table flush timer for OOB NAC

My best guess would be to cut down on the amount of traffic being sent to the CAM.

In OOB, when a new MAC is seen on the port, it is sent to the CAM to determine if it is in the Certified Device List (or a filter) or if it needs to be postured (manually clearing the MAC on a port also triggers this).

Changing the default cuts down on these events.

Mike

309
Views
0
Helpful
3
Replies
CreatePlease to create content