From: Lai, Ben (benlai_cn@hotmail.com)
Date: Mon Jan 10 2005 - 01:02:33 GMT-3
Firstly, can we use HSRP without a virtual MAC address for the virtual
router?
Secondly, I use sticky address because it is easy to copy the mac address of
the attached device to the configuration.
Rgds.
-----Original Message-----
From: Alsontra [mailto:alsontra@gmail.com]
Sent: 2005Dj1TB9HU 22:44
To: 'Lai, Ben'
Subject: RE: 3550 port-security and HSRP.
Why are you using virtual MACs and also why are you using sticky address?
Are these requirements?
Al
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of Lai,
Ben
Sent: Sunday, January 09, 2005 7:51 PM
To: ccielab@groupstudy.com
Subject: 3550 port-security and HSRP.
Hi all:
Is there anybody used to configure PORT-SECURITY and HSRP?
The scenario is: there are two router connected with a CAT 3550 switch,
running HSRP,
When I configuration HSRP on the two routers and PORT-SECURITY on the 3550
switch, the problem occurs:
The configuration of the 3550 switch is as follow:
For example:
interface FastEthernet0/1
switchport access vlan 2
switchport mode access
switchport port-security
switchport port-security maximum 2
switchport port-security aging time 1
switchport port-security violation restrict
switchport port-security mac-address sticky 1111.1111.1111
switchport port-security mac-address sticky AAAA.AAAA.AAAA(as the virtual
mac of HSRP)
interface FastEthernet0/3
switchport access vlan 2
switchport mode access
switchport port-security
switchport port-security maximum 2
switchport port-security aging time 1
switchport port-security violation restrict
switchport port-security mac-address sticky 2222.2222.2222
the switch prompts error message with the virtual MAC address of HSRP.
How to deal with this?
This archive was generated by hypermail 2.1.4 : Wed Feb 02 2005 - 22:10:21 GMT-3