Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 

packet-action

 

Syntax

Hierarchy Level

Release Information

Statement introduced in Junos OS Release 8.4.

Support for the switch-options statement added in Junos OS Release 9.2.

Support for top-level configuration for the virtual-switch type of routing instance added in Junos OS Release 9.2. In Junos OS Release 9.1 and earlier, the routing instances hierarchy supported this statement only for a VPLS instance or a bridge domain configured within a virtual switch.

Support for logical systems added in Junos OS Release 9.6.

[edit switch-options interface interface-name interface-mac-limit limit], [edit switch-options interface-mac-limit limit], [edit switch-options mac-table-size limit], [edit vlans vlan-name switch-options interface interface-name interface-mac-limit limit], [edit vlans vlan-name switch-options interface-mac-limit limit], and [edit vlans vlan-name switch-options mac-table-size limit] hierarchy levels introduced in Junos OS Release 12.3R2 for EX Series switches.

Support for EVPNs introduced in Junos OS Release 13.2 on MX Series 5G Universal Routing Platforms.

Support at the [edit switch-options interface interface-name interface-mac-limit limit] hierarchy level and hierarchy levels under [edit vlans vlan-name] introduced in Junos OS Release 13.2X50-D10 for EX Series switches and Junos OS Release 13.2 for the QFX Series.

Description

Specify the action taken when packets with new source MAC addresses are received after the MAC address limit is reached. If this statement is not configured, packets with new source MAC addresses are forwarded by default.

Note

The packet-action statement is not supported on the QFX10002-60C switch.

Default

Note

On a QFX Series Virtual Chassis, if you include the shutdown option at the [edit vlans vlan-name switch-options interface interface-name interface-mac-limit packet-action] hierarchy level and issue the commit operation, the system generates a commit error. The system does not generate an error if you include the shutdown option at the [edit switch-options interface interface-name interface-mac-limit packet-action] hierarchy level.

Disabled. The default is for packets for new source MAC addresses to be forwarded after the MAC address limit is reached.

Options

dropDrop packets with new source MAC addresses, and do not learn the new source MAC addresses.
Note

On QFX10000 switches, if you include the drop option, you cannot configure unicast reverse-path forwarding (URFP) on integrated routing and bridging (IRB) and MAC limiting on the same interface. If you have an MC-LAG configuration, you cannot configure MAC limiting on the interchassis link (ICL) interface.

drop-and-log(EX Series switches and QFX Series only) Drop packets with new source MAC addresses, and generate an alarm, an SNMP trap, or a system log entry.
log(EX Series switches and QFX Series only) Hold packets with new source MAC addresses, and generate an alarm, an SNMP trap, or a system log entry.
none(EX Series switches and QFX Series only) Forward packets with new source MAC addresses, and learn the new source MAC address.
shutdown(EX Series switches and QFX Series only) Disable the specified interface, and generate an alarm, an SNMP trap, or a system log entry.

Required Privilege Level

routing—To view this statement in the configuration.

routing-control—To add this statement to the configuration.