I've been having an argument with a "federal employee" about VOIP issues, MAC address port security, etc. So here's the scenario:
We use Cisco phones, with PC's plugged into their "trunk" ports, for network connectivity. Each switchport is configured for a voice vlan and an access vlan.
We use port-security on each switch, coupled with switchport port-security, mac sticky, etc.
About 2 years ago, the common practice was to configure 3 mac addresses on each port. The reason was that the phone would populate both the data and voice vlan when it was configuring, and we still had to connect with the attached PC. But then, there was a directive that said to change this because this had been corrected.
So, currently , we were configuring security as:
switchport port-security mac-address sticky
switchport port-security maximum 2
switchport port-security maximum 1 vlan access
switchport port-security maximum 1 vlan voice
I'm not the big voice guy. But as I understand the process, the phone will power on. The switch, through cdp neighbor, will give the phone it's voice vlan assignment. The phone will then start tagging packets and start the dhcp process and start registering with CUCM. But it no longer does the double mac address thing.
The argument by this "federal employee" is based on the old assumptions with double tagging by the phone. But I know this was resolved in a newer IOS.
Can someone please steer me to the article that draws this out?
IntroductionFeatured ExpertQ:Under what circumstances does it make sense to view "resource total" as opposed to "resource available" or vice versa?Q:Can that be sent to a Syslog server?Q:Is it possible to see when a device has changed, for example, if a ...
(view in My Videos)
Community Live- Tour of the Real-Time Monitoring Tool
(Live event - Tuesday, 20 April, 2021 at 10:00 am Pacific/ 1:00 pm Eastern / 7:00 pm Paris)
This event had place on Tuesday 20th, April 2021 at 10:00 hrs PDT
What is th...
Hello Admin Community!
I’m recruiting participants for an upcoming study looking at large meeting troubleshooting in Control Hub. If you’d like to participate, please fill out this quick, 2 min. survey. Thanks! https://www.surveymonkey.com/r/...
Don't you just hate having to run RTMT in a virtual machine, well here it runs in an app for mac. I have complied a version for CUCM 14.x ( from a version I got for 11.x ) It works on older versions also. Here it is https://haffi.is/rt...
To participate in this event, please use the button to ask your questions
Tour of the Real-Time Monitoring Tool
Have any questions about the Real-Time Monitoring Tool?
What is the Real-Time Monitoring Tool (RTMT) and how do I use it? In addition to...