port-security on portchannels ?

Unanswered Question
Apr 30th, 2009

switchport port-security maximum 40

switchport port-security

1) Does anyone know if this is supported on C3750 switches on Portchannels or will be supported in the future ?

2) Will it work if i configure it on the physical interface, instead of the Portchannel interface ?

You might think, why on earth put this on a portchannel ? The portchannel only has one vlan allowed, and it connects to a HP Blade PC chassis with 20 internal PCs. Max mac address is so 40 (dual nic PCs)

regards,

Geert

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Edison Ortiz Thu, 04/30/2009 - 07:06

Geert,

It's not supported at the moment and I don't think it may be supported in the future due to its complexity.

Based on the current documentation:

Port Security Configuration Guidelines

Follow these guidelines when configuring port security:

•Port security can only be configured on static access ports or trunk ports. A secure port cannot be a dynamic access port.

•A secure port cannot be a destination port for Switched Port Analyzer (SPAN).

•A secure port cannot belong to a Fast EtherChannel or a Gigabit EtherChannel port group.

http://www.cisco.com/en/US/docs/switches/lan/catalyst3750/software/release/12.2_46_se/configuration/guide/swtrafc.html#wp1038501

HTH,

__

Edison.

Actions

This Discussion