2960 Port Security

Unanswered Question
Jun 9th, 2008
User Badges:

Hi All

I'm having a bit of a dilema configuring some 2960 switch ports for port security.

Each Port must only see one legal device connected to it and shutdown should someone connect an illegal device.

I have configured the port accordingly. But if I have the switchport port-security max set to 1, nothing works and if I set it to, 2 everything works including illegal devices ..

I cannot see for the life of me whatI am doing wrong .. can any one advise ?

interface FastEthernet0/14

switchport access vlan 2

switchport mode access

switchport port-security

switchport port-security max 2

switchport port-security mac-address xxxx.xxxx.xxxx

speed 10

duplex full

spanning-tree portfast

spanning-tree bpduguard enable

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Collin Clark Mon, 06/09/2008 - 05:52
User Badges:
  • Purple, 4500 points or more

The default is 1 address, so I don't think you need the statement. Here's an example of ours.

switchport port-security

switchport port-security violation restrict

switchport port-security mac-address 0000.2222.4444

Hope that helps

thestagman Mon, 06/09/2008 - 06:17
User Badges:

Hello Collin

Thats worked a treat, I just removed the max setting and it all worked. Why I didn't think of that I just don't know ..

Thanks for your time



This Discussion