switch port port-security MAC-ADDRESS sticky

Unanswered Question
Sep 16th, 2008


I set switch port port-security.

How can I reset MACaddress globally when we set MACaddress sticky?



I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 3.5 (2 ratings)
Mark Yeates Wed, 09/17/2008 - 05:10


To delete all the sticky addresses on an interface or a VLAN, use the "clear port-security sticky interface interface-id" command.



pradeepks1 Wed, 01/28/2009 - 10:21

I am facing some issues with port-security in my network environment. The issue comes when we try to move users(PC/Phone) from one place to another in the same floor off course they belong to the same access switch.

The PC and phone does not connect even after we reset the port/clear the ARP/Mac-Address-Table.

also if try to manually bind the mac-address to the switch port it says : duplicate address" address already there message.

can any one share why this type of behavior and how to over come this problem.

jafrazie Thu, 01/29/2009 - 05:56

If you enable sticky, this binds the MAC to the port, regardless of aging, link-down, etc. If you want MACs to be able to move, don't use sticky.

Also, then I'd recommend aging to mitigate the issue of MACs moving around. Something else you might look into if you're running Cisco phones .. they can now send a switch a CDP update whenever phones unplug. This can immediately clear port-security state.

Hope this helps,

hunnetvl01 Sat, 02/14/2009 - 06:31

I am using AVAYA IP phones and have the same issue.

What should be used instead of sticky and why does it say that the max should be 3 if there are only 2 MACs bound to the interface of teh switch.




This Discussion