Re: HSRP and BIA posted 06/03/2008
- Subject: Re: HSRP and BIA
- From: "itsfortarget iwillgetit" <itsfortarget@xxxxxxxxx>
- Date: Tue, 3 Jun 2008 22:54:43 +0300
- Cc: ccielab@xxxxxxxxxxxxxx
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:references; bh=xXvTgLycYlJdb1wDW5h98KnaDoaeA3m0Vtlr6yWtE/0=; b=C0ZsJDSpZv5xrmRhbPTV2huiagwZhhnCvNXgOZ1kXcvs83InQHZ3Q3KJpQ+WLF0If8vJYt7bDd7lOQx02GcbIPS7t1rgM6RNRuSScEWmWhLnzCcI027ompQj4nglIH/eYYBrqK9BY44UoZZwCPkJa9eEBXL7DKd54QzVYmRTGxU=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:references; b=kvJOLxSmmGC9KrhHnoLYTqDQGTgYXS+s9EyFUZ6HJ2KTP2jy7O12rCDfem39gdp0vYQ7NhC+6qbN/518Orj+mZmVY0SZJr45VdHdh02qOJjjZh0TE6+96D9uOIYb5TKub7lcOuEdhsFGZliOptkjl+sXpJW/Osm/h4FL38FDIhg=
- In-reply-to: <BAY117-W11CB8F6A1568434E302C32E7BA0@phx.gbl>
- References: <BAY117-W11CB8F6A1568434E302C32E7BA0@phx.gbl>
When port security is configured on the switch ports that are connected to
the HSRP enabled routers, it causes a MAC violation, since you cannot have
the same secure MAC address on more than one interface. A security violation
occurs on a secure port in one of these situations:
The maximum number of secure MAC addresses is added to the address table,
and a station whose MAC address is not in the address table attempts to
access the interface.
An address that is learned or configured on one secure interface is seen
on another secure interface in the same VLAN.
By default, a port security violation causes the switch interface to become
error-disabled and to shutdown immediately, which blocks the HSRP status
messages between the routers.
On Tue, Jun 3, 2008 at 8:59 AM, Mike Haddad <mike.haddad@xxxxxxxxxxx> wrote:
> When the question says do not use the BIA address for HSRP. Isn't it the
> default behavior of HSRP?
> Thanks in advance,
> Subscription information may be found at: