I don't know the error message you're getting but isn't the point of
port-security to stop mac addresses from moving? I'd probably suggest
setting the HSRP mac address statically as an accepted address on each
port.
From:
Rameez Khan <rameezk1999_at_gmail.com>
To:
Cisco certification <ccielab_at_groupstudy.com>
Date:
07/24/2009 02:24 PM
Subject:
PORT-SECURITY with HSRP
Sent by:
nobody_at_groupstudy.com
Hello there
I am gettng prblms whnever i try to port-securty with hsrp, security
violations is occuring
e.g a test scenario , actually prblm starts whn active router changes ,
sample config
SW1
int fa0/4
switchport access vlan 10
switchport port-security maximum 2
switchport port-security
switchport port-security violation restrict
switchport port-security mac-address sticky
int fa0/5
switchport access vlan 10
switchport port-security maximum 2
switchport port-security
switchport port-security violation restrict
switchport port-security mac-address sticky
R4
ip address 192.168.1.4 255.255.255.0
standby 1 ip 192.168.1.10
standby 1 ip priority 105
standby 1 preempt
standby 1 track s0/0
R5
ip address 192.168.1.5 255.255.255.0
standby 1 ip 192.168.1.10
standby 1 ip priority 100
standby 1 preempt
standby 1 track s0/0
Blogs and organic groups at http://www.ccie.net
Received on Fri Jul 24 2009 - 14:45:53 ART
This archive was generated by hypermail 2.2.0 : Sat Aug 01 2009 - 13:10:23 ART