is interface-mac-limit works with the Label Switch Interfaces (LSI).
For example below, 20 Macs were learned by lsi.1066267. If we configure “interface-mac-limit 1 packet-action drop”, will there be only one Mac learned? Then all packets with new source Mac will be dropped?
CAP1RJ_re0> show vpls mac-table instance VPLS count
2849 MAC address learned in routing instance VPLS bridge domain __VPLS_BS
MAC address count per interface within routing instance:
Logical interface MAC count
[…]
lsi.1066267:none 20
[…]
Or in order to do this we need to add this option for the whole routing instance?
https://www.juniper.net/documentation/en_US/junos/topics/reference/configuration-statement/vrf-table-label-edit-routing-instances-vp.html
When you include the vrf-table-label statement in the configuration of a VRF routing instance, a label-switched interface (LSI) logical interface label is created and mapped to the VRF routing table. Any routes in the VRF routing table are advertised with the LSI logical interface label allocated for the VRF routing table. When packets destined for the VRF routing instance arrive on a core-facing interface, they are treated as if the enclosed IP packet arrived on the LSI interface and are then forwarded and filtered based on the correct table.