RE: Port Security Questions

From: Victor Cappuccio (cvictor@protokolgroup.com)
Date: Sat Oct 21 2006 - 16:47:12 ART


If you can not use the bia parameter of HSRP, then use a static Mac address
at the HSRP Configuration..
This had been discussed several times on this board
Check the Archives :D
Victor.-

-----Mensaje original-----
De: nobody@groupstudy.com [mailto:nobody@groupstudy.com] En nombre de Ricky
MK Au
Enviado el: Sabado, 21 de Octubre de 2006 03:03 p.m.
Para: ccielab@groupstudy.com
Asunto: Port Security Questions

Dear all,

I have the following problem in configuring port-security on a VLAN 13 with
(R1-e0/0 on switch port fa0/3) and (R2-fa0/0 on switch port fa0/4) and an
HSRP interfaces for R1-e0/0 and R2-fa0/0. While R1-e0/0 is the primary
interface unless it lost it's connection to the WAN interface.

I have configured port-security with the mad address of R1-e0/0 and
R2-fa0/0 in the corresponding their corresponding switch ports. However, it
display a message with duplicate mac address detected.

Is anyone can tell me what is the corresponding step in setting port
security to allow only the two allowed routers to plug in the switch ports
with HSRP enabled for that VLAN?

Ricky M.K. Au,



This archive was generated by hypermail 2.1.4 : Wed Nov 01 2006 - 07:29:06 ART