03-07-2013 07:45 AM - edited 03-07-2019 12:06 PM
Hi,
Had a Sev 1 issue today. We have a bunch of Nexus 5ks connecting to some HP C7000 Chassis for the use of Virual environments. Engineers build and tear down servers during the day, however today, an engineer configured a virtual machine accidently with its IP address as the default gateway. Each pair of nexus switches has one physical SVI per vlan and a HSRP address for the vlan. Of course this engineer configuring the server IP address as the HSRP address killed the vlan... which lead me onto think... are they are tried and tested techniques to protect this from happening on the switch. Enforcing the ARP/MAC of the HSRP address and not allowing it to change or any other device to change it?
All thoughts appreciated...
Lee.
Solved! Go to Solution.
03-07-2013 07:59 AM
I think you are looking for dynamic ARP inspection. Here is a sheet about configuring it in the Nexus 5000.
Best Regards,
Greg
03-07-2013 07:59 AM
I think you are looking for dynamic ARP inspection. Here is a sheet about configuring it in the Nexus 5000.
Best Regards,
Greg
03-08-2013 12:36 AM
Spot on!
Thanks very much! Lee.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide