01-28-2009 07:45 AM - edited 03-06-2019 03:42 AM
Is there a better solution to resetting sticky port security on a single port on a Catalyst 3560 SW when a PC is swapped out than:-
sw(config-if)#no switchport port-security mac-address sticky
sw(config-if)#switchport port-security mac-address sticky
sw(config-if)#shutdown
sw(config-if)#no shutdown
sw#wr
I know that you can clear the whole mac address table at the enable prompt, but that is a security risk until all the ports have re-learned the mac addresses.
Any help would be appreciated.
Thanks
Solved! Go to Solution.
01-28-2009 07:56 AM
I think you are looking for the "clear port security sticky interface fa0/X" command. Instead of turning off port security and the interface and enabling them this command will do the same thing. I don't see a security issue by doing this.
HTH,
Mark
01-28-2009 07:56 AM
I think you are looking for the "clear port security sticky interface fa0/X" command. Instead of turning off port security and the interface and enabling them this command will do the same thing. I don't see a security issue by doing this.
HTH,
Mark
01-28-2009 08:26 AM
Many thanks Mark, hadn't followed the sub-commands far enough!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide