Can MAC-based VLAN and ip source binding be used together on S5130S-28P-EI

pc----hub-------S5130S-28P-EI (Layer 2 deployment)----------gateway

The device needs to join the VLAN based on its MAC address and requires IP-MAC binding

Therefore, MAC-based VLAN and IP source binding are intended for use

Need to acknowledge whether the two functions can take effect simultaneously

Key configurations of the lab device are as follows

 mac-vlan mac-address 988f-e06d-4b09 vlan 200 

 ip source binding ip-address 172.31.0.21 mac-address 988f-e06d-4b09

interface GigabitEthernet1/0/23

 port link-type hybrid

 undo port hybrid vlan 1

 port hybrid vlan 100 200 untagged

 mac-vlan enable

 ip verify source ip-address mac-address

[H3C-probe]debug qacl show acl-resc slot 1 chip 0

Found mac-vlan in lookup engine ttl0

ip source binding is in another lookup engine IPCL 0

---------------Qacl VTcam UsedResc Info---------------

Acl Hw Resource: Group  0, VTcamId   0, Client TTI 0

------------------------------------------------------

  Pri  0, usedEntries    1, mode Double

  =========================================

    acl type                   usedEntries[1] 

  =========================================

    [341]Zero-Mac-Deny               1   

  ======================================

------------------------------------------------------

  Pri  9, usedEntries   30, mode Double

  =========================================

    acl type                   usedEntries[30] 

  =========================================

    [327]Mac Based Vlan Port         28  

    [326]Mac Based Vlan Exact        2   

  ======================================

------------------------------------------------------

Acl Hw Resource: Group  0, VTcamId   1, Client TTI 1

------------------------------------------------------

Acl Hw Resource: Group  0, VTcamId   1, Client IPCL 0

------------------------------------------------------

  Pri  2, usedEntries    2, mode Double

  =========================================

    acl type                   usedEntries[2] 

  =========================================

    [31 ]PortBind Default            2   

  ======================================

------------------------------------------------------

  Pri  4, usedEntries    3, mode Double

  =========================================

    acl type                   usedEntries[3] 

  =========================================

    [156]GlobalBind_V4               3   

  ======================================

Acl-Type GlobalBind_V4, Stage IPCL 0, Global, Installed, Active

Prio Mjr/Sub 0x204/0x2, RuleFormat INGRESS_EXT_NOT_IPV6, Vtcame/Idx 1/32, 

Rule Match --------

        Global range

        Source mac: 988F-E06D-4B09, FFFF-FFFF-FFFF 

        Source IP: 172.31.0.21, 255.255.255.255 

        IP Type: Any IPv4 packet

Actions --------

        Permit 

Refer to the following method

This device only has slot1 and chip0

H3C-probe]debug qacl show rule-in-hardware 1 0 1  32 ingress-ext-not-ipv6 

==========================================================================

vTcamMngId: 1 vTcamId: 1 ruleId:32 

Acl format: INGRESS_EXT_NOT_IPv6

-------------------------------------

key   |common:

      |  pclId             0x200

      |  pclIdMask         0x300

      |  isIp              1

      +------------------------------

      |commonExt:

      |  isIpv6            0

      +------------------------------

      |sip:

      |  u32Ip             15001fac

      |  arIP              172.31.0.21

      |macSa               988f-e06d-4b09

==========================================================================

action|

      |pktCmd                             CPSS_PACKET_CMD_FORWARD_E

H3C-probe]debug qacl show  slot 1 chip 0 verbose 0 acl-type 326  

Tti-Type Mac Based Vlan Exact, Stage TTI 0, GlobalRange, Installed, Active

Prio Mjr/Sub 1289/4, RuleFormat ETH, Vtcame/Idx 0/285, 

        KeyType: ETH

Rule Match --------

        Source mac: 988F-E06D-4B09, FFFF-FFFF-FFFF 

        IsTagged : No

Actions --------

        Tti Rule Command :Permit 

        Vlan Command : Modify All, VlanId: 200 

        Up Command : Enable Modify Up, VlanPri_Outer: 0

[H3C-probe]debug qacl show rule-in-hardware 1 0 0 285 tti_eth 

==========================================================================

vTcamMngId: 1 vTcamId: 0 ruleId:285 

Tti format: ETH

-------------------------------------

key   |

key   |common:

      |  pclId 513 mask 0x3ff

      |  mac               988f-e06d-4b09

      |  isTagged          0

      +------------------------------

==========================================================================

action|

      |tunnelTerminate                    FALSE

      |ttPassengerPacketType              IPV4V6

      |tsPassengerPacketType              ETHERNET

      |ttHeaderLength                     0

      |continueToNextTtiLookup            FALSE

      |copyTtlExpFromTunnelHeader         FALSE

      |mplsCommand                        NOP

      |mplsTtl                            0

      |enableDecrementTtl                 FALSE

      |passengerParsingOfMplsTunnelMode   DISABLE

      |passengerParsingOfTransitNonMplsTransitTunnelEnable   FALSE

      |command                            FORWARD

Both functions actions are forward so they can be processed in parallel

The device 5130S-52S-EI-H1 can use both MAC VLAN and IP source binding simultaneously with both taking effect.