[c-nsp] cisco ASA using many time the same MAC and HP switches
Niels Bakker
niels=cisco-nsp at bakker.net
Thu Nov 1 13:52:04 EDT 2007
* philou at philou.ch (Philippe Strauss) [Thu 01 Nov 2007, 17:45 CET]:
>I've just noticed an interesting "feature": ASA firewalls use the same
>MAC address for many interfaces, either VLAN interfaces "SVI" (5505)
>or SubInterface (5520).
Many if not most router platforms do that these days, in fact.
>HP switch don't like that much, it seems they have only one global
>forwarding database across all VLAN, by deduction I guess catalyst have
>one forwarding database per VLAN.
Only the cheapest, nastiest switches do not have a per-VLAN MAC
forwarding database. I do not recall the exact model numbers but
anything recent from HP should work.
-- Niels.
--
More information about the cisco-nsp
mailing list