No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search


To have a better experience, please upgrade your IE browser.


Configuration Guide - Ethernet Switching

CloudEngine 8800, 7800, 6800, and 5800 V200R003C00

This document describes the configuration of Ethernet services, including configuring MAC address table, link aggregation, VLANs, MUX VLAN, Voice VLAN, VLAN mapping, QinQ, GVRP, VCMP, STP/RSTP/MSTP, VBST, SEP, RRPP, ERPS, LBDT, and Layer 2 protocol transparent transmission.
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Configuring a Blackhole MAC Address Entry

Configuring a Blackhole MAC Address Entry


Blackhole MAC address entries can be used to filter out invalid MAC addresses. To prevent a hacker from using a MAC address to attack a user device or network, configure the MAC address of an untrusted user as the blackhole MAC address. The switch directly discards the received packets where the source or destination MAC address is the blackhole MAC address and the VLAN ID of the packets corresponds to the blackhole MAC address.


The CE6870EI and CE6875EI devices forward Layer 3 packets with the source MAC addresses matching blackhole MAC address entries.


  1. Run system-view

    The system view is displayed.

  2. Run mac-address blackhole mac-address vlan vlan-id

    A blackhole MAC address entry is configured.

  3. Run commit

    The configuration is committed.

Verifying the Configuration

Run the display mac-address blackhole [ vlan vlan-id ] [ verbose ] command to check configured blackhole MAC address entries.

Updated: 2019-05-08

Document ID: EDOC1100004351

Views: 125270

Downloads: 295

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Previous Next