Many thanks for the info and write up. Good stuff.
On Wed, Jul 1, 2009 at 1:23 AM, GAURAV MADAN <gauravmadan1177_at_gmail.com>wrote:
> Hiii
>
> Its been longg since I tried this .. but as far as i remember ; you dont
> need to configure the other router ,
>
> There are 2 solutions when u are working with HSRP and Port-Security.
> Here probably 1st sol is not of interest as u are configuring port-security
> with 1 secure addreess
>
>
> Sol 1
> *******
> int f1/0/4
> switchport port-security
> *switchport port-security maximum 3*
>
>
>
> if you have given " switchport port-security mac-address sticky" CLI ..
> you will see
>
> *switchport port-security mac-address sticky 0001.0002.0003* <== router
> mac
> *switchport port-security mac-address sticky 0000.0c07.ac01* <== HSRP MAC.
>
>
> Solution 2
> *****************
> R4
> int f0/0
> ip address <> <>
> mac-address 0001.0002.0003
> *standby use-bia*
>
> SW
> int f1/0/4
> switchport port-security
> switchport-security mac-address 0001.0002.0003.
>
> HTH
> Gaurav Madan
> CCIE
>
>
> On Wed, Jul 1, 2009 at 8:18 AM, ALL From_NJ <all.from.nj_at_gmail.com> wrote:
>
>> Hey team,
>>
>> Doing standby tonight and had a quick question ...
>>
>> The switch that R1 connects to only allows one mac on the port
>> (port-security). On one router, R1, I configured the use-bia command. On
>> the other router, R2, it shows the mac of R1 as the active mac-address,
>> and
>> it shows the standard local virtual mac of 0000.0c07.ac00 (v1 default).
>> All
>> this is fine and pretty much expected ...
>>
>> Does it make sense to hard code R2 with a virtual mac of R1 with the
>> command
>> "stand 1 mac-address ......" ? To me this makes sense since when you shut
>> down R1, R2 will need to gratuitous arp out a new mac for the virtual IP
>> and
>> not all clients support grat arp ...
>>
>> On the switch however (using a 3560 for this lab), this command does not
>> seem to be there ... humm ... not possible to configure this on the
>> switch.
>> Caveat when pairing a switch with a router for HSRP? Appears to be.
>> Also,
>> the same MAC bounces around when the standy router transitions, confusing
>> for my switch.
>>
>> Any other insight to share? Appreciate your thoughts team. Best Regards,
>>
>> --
>> Andrew Lee Lissitz
>> all.from.nj_at_gmail.com
>>
>>
>> Blogs and organic groups at http://www.ccie.net
>>
>> _______________________________________________________________________
>> Subscription information may be found at:
>> http://www.groupstudy.com/list/CCIELab.html
>>
>>
>>
>>
>>
>>
>>
>>
>
-- Andrew Lee Lissitz all.from.nj_at_gmail.com Blogs and organic groups at http://www.ccie.netReceived on Wed Jul 01 2009 - 09:24:14 ART
This archive was generated by hypermail 2.2.0 : Sat Aug 01 2009 - 13:10:21 ART