RE: Virtual MAC and Port Security [7:70030]

2003-06-05 Thread David Vital 
I really appreciate your response.  I have been trying to make sense of the
whole problem and suggested solution.  Suppose I have only 2 NICs.  one
going to each of two switches.  They are supposed to be pooling but for some
reason I see two MACs that differ only by the last character.  But those
MACs seems to jump from one port to the other.   any ideas as to how I would
solve this one?

David


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=70166t=70030
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Virtual MAC and Port Security [7:70030]

2003-06-03 Thread Mark W. Odette II 
David- it's been a while since I did this, but from what I understand
you to say, you are trying to provide fault tolerance (fail-over) at the
NIC level for these servers.

I can't vouch for the 6500s, but on the 5500s that I used to manage, we
used Intel NICs in a teaming fashion (which was to provide said fault
tolerance).  These NICs had their FastEthernet cables going to each
switch respectively. (4 NICs in each Server, 2 CAT5500's to plug into).

The virtual mac's of the Teaming group was plugged into the port
security table on the CATs.  The CATs were also Trunk'd together via
GBICs, so STP would block one Fast-Ether-Channel group of NIC cables on
one switch while allowing the other group to operate.

So, the short of it is, I believe you'll have to set up an EtherChannel
with the NIC Pool(s) and it's assumed that you already are Trunking
between your 6500's for backbone redundancy.  Port Security should be
straight forward- just one Virtual-MAC per NIC Pool to be plugged into
the MAC Security Table, and reference the security mac table on the
ports you want to enable port security.

It's been a couple of years since I did this, so hopefully I remembered
all the steps required. YMMV :)

HTHs
-Mark
-Original Message-
From: David Vital [mailto:[EMAIL PROTECTED] 
Sent: Monday, June 02, 2003 6:59 PM
To: [EMAIL PROTECTED]
Subject: Virtual MAC and Port Security [7:70030]

I have several Servers that are going to be doing NIC pooling.  So I'm
supposed to see a virtual MAC address instead of the actual physical
address
of the NIC's.  I run the NICs from one server to different switches for
fault tolerance.  If I have several 6500 series switches how can I set
it up
for Port Security?  I know I can set up the ports to handle several
MAC's
but if they are running the same virtual MAC what's the answer?

David




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=70045t=70030
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]