Hello r/networking !
Ran into a curious issue, just wanted to make sure that my understanding of it was solid, and possibly get a more authoritative answer/documentation.
I have 2 network switches that were erroneously connected together.
- The switches were both the same model (3750X)
- The switches were both connected via an access port (not trunk ports)
- The switches were both configured with different VLANs
- Switch 1 used VLAN 25
- Switch 2 used VLAN 27
- The switches did NOT have the same VLANs in their configuration
- I.E. Switch 1 did not have VLAN 27, Switch 2 did not have VLAN 25
- The ports were configured as follows:
- Switch 1
- switchport access vlan 25
- switchport nonegotiate
- switchport port-security mac-address sticky
- switchport port-security mac-address sticky 1111.1111.1111
- speed 100
- duplex full
- spanning-tree portfast
- spanning-tree bpduguard enable
- Switch 2
- switchport access vlan 27
- switchport nonegotiate
- switchport port-security mac-address sticky
- switchport port-security mac-address sticky 2222.2222.2222
- speed 100
- duplex full
- spanning-tree portfast
- spanning-tree bpduguard enable
- Switch 1
When the switches were connected, I would expect that port-security would have tripped and shut down both ports, but it did not. I'm assume this is because they were on separate VLANs, and did not actually pass any traffic aside from identifying the incoming/outgoing VLAN.
Any assistance in verifying this would be greatly appreciated!
No comments:
Post a Comment