On switch B, what does the IOS config look like for the port you have the PC connected to? If the PC's port is configured as "Switchport Mode Trunk ..." like the older Cisco 3524 switches need for VoIP ports, it won't work with Port-Security. Port-security will only work correctly on a port configured as "Switchport Mode Access". It sounds like you have tried just about everything else. You might try upgrading the IOS on switch B to the same version as switch A and see if that fixes the problem. Kerry Melcher Supervisor of Network Services South Kitsap School District Phone: 360-874-7031
________________________________ From: Adi Ariyanto [mailto:[email protected]] Sent: Thu 1/13/2011 6:18 PM To: [email protected] Subject: Re: [Packetfence-users] dhcp problem in packetfence If you hook a PC on the 2950B on a switchport that is on your production VLAN, are you able to get an IP? If not, please review your trunk configuration.-->yes it will be get an dhcp IP from PF(if the PC is not registered, but if the PC already registered(register via GUI or I input directly to mysql database) it will get IP from my win2003 dhcp server So to test : - Put a switchport into the registration vlan on 2950B, and check if you receive an IP.-->yes,if I test place the pc into registration vlan the pc will get dhcp ip from PF.all switchport in 2950A and 2950B has default vlan 41, the production vlan is vlan 41. when a new pc hook to 2950A or 2950B,PF will place the new PC into vlan 4(registration) then after registration,PF will place the new PC into vlan production/default vlan again which is 41. - Put a switchport into the production vlan on 2950B, and check if you receive an IP.-->yes it comes from PF dhcp server first because if there is new PC mac address on PF database, PF will move the PC into registration vlan to make the pc register first. 2950A and 2950B I believe have the same trunk configuration because both switch already run for several years, and fyi in switch 2950B,PF was able to change mac address on one switchport I think it mean the trap is already run,but its failure on vlan changing, does the difference IOS version on both switch cause this ? Regards, Adi Ariyanto The above message is for the intended recipient only and may contain confidential information and/or may be subject to legal privilege. If you are not the intended recipient, you are hereby notified that any dissemination, distribution, or copying of this message, or any attachment, is strictly prohibited. If it has reached you in error please inform us immediately by reply e-mail or telephone, reversing the charge if necessary. Please delete the message and the reply (if it contains the original message) thereafter. Thank you.
<<winmail.dat>>
------------------------------------------------------------------------------ Protect Your Site and Customers from Malware Attacks Learn about various malware tactics and how to avoid them. Understand malware threats, the impact they can have on your business, and how you can protect your company and customers by using code signing. http://p.sf.net/sfu/oracle-sfdevnl
_______________________________________________ Packetfence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
