I am a bit confused by your statement. May be its just me.
You mentioned that 6k1 - 6k2 and 2960 are in L2 domain, and you also
mention that 6k2 should do interval Routing. There are contradictory.
If 6k2 is indeed doing interval routing then 6k1 will see the MAC
address of 6k2 SVI to reach "s".
It would perhaps he helpful if you can list out the VLAN #'s SVI IPs
and S & H IPs.
Cheers!
-Vijay Shekhar
CCIE(sec)#17589/CISSP/RHCE.
http://au.linkedin.com/in/vshekhar
Quoting Ivan Hrvatska <ivanzghr_at_gmail.com>:
> Hi,
>
> I have scenario like this:
>
> H---Asa----6k1-----6k2
> ! !
> ! !
> 2960sw
> !
> S
>
> H-host in cloud (172.30.4.5), somewhere in distance network.y
> Asa-running in transparent mode
> Between 6k switches and 2960 is l2 domain (trunks).
> 6k switches running hsrp and 6k2 is active gw for vlans 500 and 514. It is
> also root bridge for those vlans. Asa has one IP in vlan 500.
> S is in vlan 514.
> Problem is that 6k1 never learns mac address of S. When traffic comes from H
> 6k1 floods network with packets that should go to S. Only time when 6k1
> learns S mac address is when you ping S from 6k1. After 480 sec is aging
> time and mac address is cleared. As I understand 6k1 should forward packets
> which has S as destanation to 6k2 as it is active gw for vlan 500 and then
> 6k2 should perform intervlan routing. Why flooding happens? Could asa make
> some problems cause of transparent mode?
>
> Regards
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
Blogs and organic groups at http://www.ccie.net
Received on Tue Dec 28 2010 - 15:58:38 ART
This archive was generated by hypermail 2.2.0 : Sat Jan 01 2011 - 09:37:50 ART