新接手2台h3c的设备，其中包括一台s5024p交换机，今天生控写出书面申请要求某台电脑开通互联网，原来的网管做的设置是把s5024p分为2个lan，vlan 1为管理vlan，vlan 2 为接入vlan。telnet上去，

[S5024P]dis cu

sysname S5024P

super password **

localuser ** ** 1

priority-trust cos

Monitor-port:
GigabitEthernet0/21
Mirroring-port:
GigabitEthernet0/2 GigabitEthernet0/3

vlan 1

vlan 2

interface vlan-interface1
ip address 192.168.1.248 255.255.255.0

interface GigabitEthernet0/1
broadcast-suppression 20

---- More ----

interface GigabitEthernet0/2
broadcast-suppression 20
port access vlan 2

interface GigabitEthernet0/3
broadcast-suppression 20
port access vlan 2

interface GigabitEthernet0/4
broadcast-suppression 20

interface GigabitEthernet0/5
broadcast-suppression 20

interface GigabitEthernet0/6
broadcast-suppression 20

interface GigabitEthernet0/7
broadcast-suppression 20

interface GigabitEthernet0/8
broadcast-suppression 20

---- More ----

interface GigabitEthernet0/9
broadcast-suppression 20

interface GigabitEthernet0/10
broadcast-suppression 20

interface GigabitEthernet0/11
broadcast-suppression 20

interface GigabitEthernet0/12
broadcast-suppression 20

interface GigabitEthernet0/13
broadcast-suppression 20

interface GigabitEthernet0/14
broadcast-suppression 20

interface GigabitEthernet0/15
broadcast-suppression 20

interface GigabitEthernet0/16
broadcast-suppression 20

interface GigabitEthernet0/17
broadcast-suppression 20

interface GigabitEthernet0/18
broadcast-suppression 20

interface GigabitEthernet0/19
broadcast-suppression 20

interface GigabitEthernet0/20
broadcast-suppression 20

interface GigabitEthernet0/21
broadcast-suppression 20

interface GigabitEthernet0/22
broadcast-suppression 20

interface GigabitEthernet0/23
broadcast-suppression 20

interface GigabitEthernet0/24
broadcast-suppression 20

VLAN State: 802.1q VLAN

mac-address blackhole 000b-2f0e-5269 vlan 1
mac-address blackhole 0018-f332-9555 vlan 1
mac-address blackhole 000d-6017-63d1 vlan 1
mac-address blackhole 000b-2f0c-af16 vlan 1
/上面的红色部分为我们需要undo 的 mac-address/
mac-address blackhole 000a-eb46-5aa6 vlan 1
mac-address blackhole 000d-61c1-8ce7 vlan 1
mac-address blackhole 0004-61a9-5e45 vlan 1
mac-address static 5020-504f-5254 interface GigabitEthernet0/2 vlan 12852
mac-address static 5020-504f-5254 interface GigabitEthernet0/3 vlan 12852
mac-address static 5020-504f-5254 interface GigabitEthernet0/4 vlan 12852
mac-address static 5020-504f-5254 interface GigabitEthernet0/7 vlan 12852
mac-address static 5020-504f-5254 interface GigabitEthernet0/9 vlan 12852
mac-address static 5020-504f-5254 interface GigabitEthernet0/12 vlan 12852
mac-address static 5020-504f-5254 interface GigabitEthernet0/15 vlan 12852
mac-address static 5020-504f-5254 interface GigabitEthernet0/19 vlan 12852
mac-address static 5020-504f-5254 interface GigabitEthernet0/20 vlan 12852
mac-address static 5020-504f-5254 interface GigabitEthernet0/23 vlan 12852

user-interface aux 0
user-interface vty 0
set authentication password ***

因为我在机房看到他是做的geth0/1 和 geth0/2 用跳线相连，猜到是在这两个端口中的一个做了对mac-address blackhole，于是

[S5024P]int
[S5024P]interface g
[S5024P]interface GigabitEthernet 0/2
[S5024P-GigabitEthernet0/2]dis mac
[S5024P-GigabitEthernet0/2]dis mac-address blackhole
MAC ADDR VLAN ID STATE PORT INDEX AGING TIME(s)
000b-2f0e-5269 1 Blackhole N/A NOAGED
0018-f332-9555 1 Blackhole N/A NOAGED
000d-6017-63d1 1 Blackhole N/A NOAGED
000b-2f0c-af16 1 Blackhole N/A NOAGED
000a-eb46-5aa6 1 Blackhole N/A NOAGED
000d-61c1-8ce7 1 Blackhole N/A NOAGED
0004-61a9-5e45 1 Blackhole N/A NOAGED

--- 7 mac address(es) found ---

果然，在geth0/2上做了的mac-address blackhole，下面是我的郁闷历程：

[S5024P-GigabitEthernet0/2]undo mac-address blackhole 000b-2f0c-af16 vlan 2
^
% Unrecognized command found at '^' position.
[S5024P-GigabitEthernet0/2]undo mac-address blackhole 000b-2f0c-af16 vlan 1
^
% Unrecognized command found at '^' position.
[S5024P-GigabitEthernet0/2]quit
[S5024P]mac-
[S5024P]mac-address b
[S5024P]undo mac
[S5024P]undo mac-address bla
[S5024P]undo mac-address black
[S5024P]undo mac-address blackhole 000b-2f0c-af16 vlan 1
^
% Unrecognized command found at '^' position.
[S5024P]undo mac-address ?
mac-learning mac-address learning
interface Choose one interface to configure
timer Configure timer
H-H-H MAC address

[S5024P]undo mac-add [S5024P]undo mac-address int [S5024P]undo mac-address interface g [S5024P]undo mac-address interface GigabitEthernet 0/2 ? [S5024P]undo mac-address interface GigabitEthernet 0/2 blackhole vlan 1P]undo mac-address interface GigabitEthernet 0/2 blackhole 000b-2f0c-af16 ^ % Too many parameters found at '^' position. [S5024P]sys ^ % Incomplete command found at '^' position. [S5024P]quit sys Password: *********** Enter system view, return to user view with Ctrl+Z. [S5024P]undo [S5024P]undo mac [S5024P]undo mac-address bla [S5024P]undo mac-address blackhole [S5024P]undo mac-address blackhole 000b-2f0c-af16 vlan 1 ^ % Unrecognized command found at '^' position. [S5024P]undo mac [S5024P]undo mac-address ? mac-learning mac-address learning interface Choose one interface to configure timer Configure timer H-H-H MAC address [S5024P]undo mac-address 000b-2f0c-af16 ? vlan Specify the VLAN ID [S5024P]undo mac-address 000b-2f0c-af16 vlan 1 到这里，才算成功，请看： [S5024P]interface GigabitEthernet 0/2 [S5024P-GigabitEthernet0/2]dis mac [S5024P-GigabitEthernet0/2]dis mac-address blackhole MAC ADDR VLAN ID STATE PORT INDEX AGING TIME(s) 000b-2f0e-5269 1 Blackhole N/A NOAGED 0018-f332-9555 1 Blackhole N/A NOAGED 000d-6017-63d1 1 Blackhole N/A NOAGED 000a-eb46-5aa6 1 Blackhole N/A NOAGED 000d-61c1-8ce7 1 Blackhole N/A NOAGED 0004-61a9-5e45 1 Blackhole N/A NOAGED --- 6 mac address(es) found --- [S5024P-GigabitEthernet0/2] 郁闷啊郁闷。