From: Lee Donald (Lee.Donald@t-systems.co.uk)
Date: Sat Sep 17 2005 - 09:46:37 GMT-3
Raj,
Usually using the standby use-bia command is ok, it is the only way round
your problem.
But your config allows 2 mac addresses and hence you shouldn't have a
problem.
One mac is for router2's Ethernet and the other is for the virtual address.
Regards
Lee.
-----Original Message-----
From: Rajib Khan [mailto:rajib56666@yahoo.com]
Sent: Saturday, September 17, 2005 1:05 PM
To: ccielab@groupstudy.com
Subject: HSRP and port-security
Hi there
I am trying to configure HSRP on the router interface and prot-security on
the sw interfaces which connects to HSRP routers. What I have noticed when
HSRP chancges its state port-security kicks in and blocks the port.
Workaround was to use "standby use-bia".
I am not sure where or not cisco will deduct mark for using "Stadby use-bia"
unless they specifically ask to use it in the HSRP question.
Do you guys know any other workaround? Following in my port-security config
switchport access vlan 2
switchport mode access
switchport port-security
switchport port-security maximum 2
switchport port-security violation restrict
switchport port-security mac-address sticky
Thanks in advance
Raj
---------------------------------
Yahoo! for Good
Click here to donate to the Hurricane Katrina relief effort.
This archive was generated by hypermail 2.1.4 : Sun Oct 02 2005 - 14:40:15 GMT-3