> Possible solution?
>
> * Operating systems, such as Windows XP, will attempt 802.1X
> authentication by sending frames to the Authenticator PAE on the
> destination multicast address 01-80-c2-00-00-0f and 01-80-c2-00-00-03. On
> Catalyst 5000 family switches with EARL1, EARL1+, EARL1++, or EARL1.1,
> these frames will be forwarded on all ports including spanning tree
> blocking ports. Because these frames are forwarded on blocked ports, the
> network will experience a Layer 2 multicast storm.
> Workaround 1: Enter the following commands to configure a permanent CAM
> entry for 01-80-c2-00-00-0f and 01-80-c2-00-00-03 to be directed out an
> unused port.
> * set cam permanent 01-80-c2-00-00-0f mod/port
> * set cam permanent 01-80-c2-00-00-03 mod/port
> Workaround 2: Follow this procedure to configure Windows XP to not send
> these frames:
> a. Cick on the associated Local Area Connection under Network
> Connections.
> b. Click on the Authentication Tab.
> c. Uncheck "Network Access Control using IEEE 802.1x."
> This problem is resolved in software release 6.2(1). (CSCdt62732)
>
Timothy J. Hornbeck
Technical Analyst III
Infrastructure Implementation - LAN/WAN
"6EQUJ5" - By Unknown
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=911&t=911
--------------------------------------------------
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
