CommScope RUCKUS Community Forums

Hi Dejeh1,

Thank you for reaching us

"What I'm trying to achieve is a situation where only the First Access point connected to that switch port Mac address will be learned by the switch, if another Access point is connected to that same switch port it will block. But so far, the switch port learns both the Access point Mac address and every user connected to the Access point Mac address and we don't want this.  "

Based on the above statement below is what I could understand 

• 1st AP mac address should be learnt
• 2nd AP mac address should not be learnt and should be blocked 
• But switch learns both AP mac address and all user mac details connected to both AP's.

I suppose the above would be difficult to achieve below is the reason why

• For the AP to operated and communicate with the network the mac address of the AP device or any device which is connected to the switch would be learnt , so if AP is connected on a port of the switch, it will learn the AP mac address. So I suppose when compared to your scenario since there are two AP then both AP mac address is learnt on the switch , we can understand here its working as designed.
• When a user is connected on Wifi the user connection would move from one AP to another automatically based on the user movement, so mac address would also be learnt on the AP in the same way. It would be difficult to understand between which AP user is roaming and how he is connecting. 

If you what only one AP to be used per switch , you can connect only one AP and remaining free ports you can choose to disable so that when a user connects another AP he would have no access to the network. And on ports where you have a wired connection to PC or other device which is not a AP device you can configure secure-mac-address max 1 per port.

I hope this helps

Thanks