Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
478
Views
0
Helpful
4
Replies

Switchport Security Issues

justbailey
Level 1
Level 1

‎10-29-2009 06:14 AM - edited ‎03-06-2019 08:22 AM

We have been running switchport security on our campus environment without issue for the last year or so. Lately, we have had two issues that I cannot figure out. (we are running on Catalyst 3550's IOS 12.1 (12c) EA1.

1) We are getting security violations from what appears to be bogus mac addresses. These happen (always, I think) when no on is on the computer and always recovers on the first attempt. The mac's are usually consistently one of these two:

5258.5f55.55c5

5e55.3555.5556

2) Our desktop computers (all Dell) have recently gone through a refresh and some have randomly tripped port security with the Dell MAC address. I have to set it to "max 2", even thought the mac-address table only sees one mac. But... show port-security interface f0/25 says, "Total MAC addresses : 2"

help!!!

Thanks in advance.

Labels:
0 Helpful
4 Replies 4

will.cullen
Level 1
Level 1

‎10-29-2009 06:27 AM

You may want to have a look at this link:

http://www.tek-tips.com/viewthread.cfm?qid=1520398

It would seem that may be the problem may be related to a NIC driver for the Dell, you say that your Dell PC's have gone through a refresh just wondering if the driver for the NIC has changed.

0 Helpful

justbailey
Level 1
Level 1
In response to will.cullen

‎10-29-2009 06:35 AM

Will,

Thanks for the reply. I have read this thread and it may be a driver issue. But all (all that I have checked) of the refreshed computers are using the same driver and only a small percentage have given us problems. But it has happened enough to cast doubt on the port security implementation:(

thanks,

Justin

0 Helpful

iyde
Level 4
Level 4
In response to justbailey

‎10-29-2009 09:09 AM

Justin,

Apart of checking for newer drivers for the NIC you might consider ugrading your switch IOS as well, as it is a very old version, you are running. I'd suggest the newest (and last?) for 3550 switches, i.e. 12.2(44)SE6. It will for sure have a lot of bug fixes and probably also some nice new features.

HTH, Ingolf

0 Helpful

justbailey
Level 1
Level 1
In response to iyde

‎10-29-2009 10:49 AM

iyde,

thanks,

we have been hesitant to upgrade IOS's on a large scale because we are not always sure what updates we are entitled to, the update/upgrade process is a bit cryptic with Cisco!! I will look into it,

Thanks!

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card