03-24-2004 01:28 PM - edited 03-02-2019 02:32 PM
We are getting a log entries every 10 to 15 secs on our Cat4006's with SUPIII's and IOS 12.1(8a)EW.
The error is reporting that MACs 00:00:00:00:FE:00 and 00:00:00:00:FE:01 are flapping between various interfaces.
We have traced these MACs back to the ports where our CheckPoint Cluster XL firewalls are connected, and beleive that the Active cluster node is advertising 00:00:00:00:FE:00 and the Passive cluster node is advertising 00:00:00:00:FE:01.
I believe the issue is being caused by the fact that we have multiple independant firewall clusters on the same VLAN, therefore we have two active firewalls (from different clusters) advertising the mac 00:00:00:00:FE:00.
Does the CAM tables track MACs per VLAN? Therefore if I moved these firewalls into different VLAN segments (but on the same switch) then this issue would be rectified? Or am I on the wrong track here?
03-24-2004 02:28 PM
The switch tracks the CAM per vlan. So, it should be OK to use the same MAC on different vlan but NOT OK to exist on the same vlan.
RH
03-24-2004 04:21 PM
Thanks
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide