port-security on portchannels ?

Unanswered Question
Apr 30th, 2009
User Badges:
  • Bronze, 100 points or more

switchport port-security maximum 40

switchport port-security



1) Does anyone know if this is supported on C3750 switches on Portchannels or will be supported in the future ?


2) Will it work if i configure it on the physical interface, instead of the Portchannel interface ?


You might think, why on earth put this on a portchannel ? The portchannel only has one vlan allowed, and it connects to a HP Blade PC chassis with 20 internal PCs. Max mac address is so 40 (dual nic PCs)


regards,

Geert

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Edison Ortiz Thu, 04/30/2009 - 07:06
User Badges:
  • Super Bronze, 10000 points or more
  • Hall of Fame,

    Founding Member

Geert,


It's not supported at the moment and I don't think it may be supported in the future due to its complexity.


Based on the current documentation:


Port Security Configuration Guidelines


Follow these guidelines when configuring port security:


•Port security can only be configured on static access ports or trunk ports. A secure port cannot be a dynamic access port.


•A secure port cannot be a destination port for Switched Port Analyzer (SPAN).


•A secure port cannot belong to a Fast EtherChannel or a Gigabit EtherChannel port group.


http://www.cisco.com/en/US/docs/switches/lan/catalyst3750/software/release/12.2_46_se/configuration/guide/swtrafc.html#wp1038501


HTH,


__


Edison.

Actions

This Discussion