Hi all. Regarding the limitation in the 3550s and the 6500s (http://www.cisco.com/warp/public/473/168.html). I was thinking that this Is not much of any issue as long as the VLANs sharing the same group ID are NOT bridged.
Knowing this, im not going to count on a person NOT plugging in a dual homed machine and turning on bridging.
The only thing that I could think of to mitigate against the risk of that happening is to make a VLAN unique authentication string on all VLANs for HSRP (standby authentication Unique1). I figure then even if the VLAN is bridged they are not going to battle for control of the default route.
Does anyone else have any experience with this? Any caveats that people have run into when running into the 16 unique issue?
This document gives several answers on frequently asked questions for PFRv3 channel state behavior.
Q1: What are all the channel operational states from a BR (border role) perspective and what are the rules/conditions to be in each st...
The need was to reach an host inside a LAN through a VPN connection managed by the LAN gateway (Cisco 1921).
The LAN gateway performs NAT and there was a dedicate nat rule for the host i wanted to reach through VPN.
I couldn't connect to the hos...