Switchport security and errdisable

Answered Question
Apr 10th, 2007

Hi,

I am trying to setup port security with errdisable action. This is the configuration I am using:

Switch(config-if)#switchport mode access

Switch(config-if)#switchport port-security

Switch(config-if)#switchport port-security mac-address MAC

cat6knative(config−if)#switchport port−security violation shutdown

After this configuration, the port should enter in a errdisable state if a host with a mac address different as MAC is connected to this port, but nothing happens and the port remains available for the non-secure host.

What else should I do or configure? Could be a problem with IOS?

Thanks in advance,

Regards

Correct Answer by Jon Marshall about 9 years 10 months ago

Hi

try adding the following line

switch(config-if)# switchport port-security maximum 1

This tells the switch that the maximum numbe of mac-addresses allowed on interface is 1.

HTH

Jon

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4 (1 ratings)
Loading.
Correct Answer
Jon Marshall Tue, 04/10/2007 - 00:52

Hi

try adding the following line

switch(config-if)# switchport port-security maximum 1

This tells the switch that the maximum numbe of mac-addresses allowed on interface is 1.

HTH

Jon

ankbhasi Tue, 04/10/2007 - 00:53

Hi Friend,

Also configure this command under interface config mode and see if this helps you

Switch(config-if)#switchport port-security maximum 1

Regards,

Ankur

Actions

This Discussion