Re: Port-Secure

From: gladston@br.ibm.com
Date: Tue Feb 15 2005 - 13:20:09 GMT-3

• Next message: Brian McGahan: "RE: Problem with Route-map"
• Previous message: ccie2be: "How ipv6 hosts choose a source address"
• Maybe in reply to: gladston@br.ibm.com: "Port-Secure"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

=============
quoted
Since you are talking about the connection to the router,
proxy-arp may cause multiple MAC detection from the switch.
So make sure you are disabling proxy-arp.
=============

Giving it a second thought, how would proxy-arp cause a second MAC
originating frames?

As I see it, router-x would answer with its own MAC.

Example:

router-1
mac 1111.1111.1111
ip 172.16.1.1 255.255.255.0

PC
ip 172.16.1.1
mask 255.0.0.0

PC sends a packet to 172.20.20.20; router-1 knows a route to 172.20.20.0
and proxy the communication. router-1 answer on behalf of PC-remote, using
its own MAC 1111.1111.1111.

 
Cordially
------------------------------------------------------------------
Alaerte

• Next message: Brian McGahan: "RE: Problem with Route-map"
• Previous message: ccie2be: "How ipv6 hosts choose a source address"
• Maybe in reply to: gladston@br.ibm.com: "Port-Secure"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Mar 03 2005 - 08:51:21 GMT-3