07-26-2010 09:39 PM - edited 03-06-2019 12:12 PM
we are having port security in our huge network . when a PC is moved from one location to another port violation is found in switch logs and the pc is denied access to the network . in this cases we would clear the port violation configuration and then re configure the port violation to make the port adapt to the new mac . but we experience a strange port violation even when we reconfigure the port security violation . reson being said by my seniors is that the mac is also learning in another switch . how to clear this issue and make the pc connect to the network without removing the port security in the switch interface .
Solved! Go to Solution.
07-29-2010 10:43 AM
Hello,
Have you tried "clear port-security dynamic address" command?
Regards,
NT
07-26-2010 09:47 PM
Hello,
Have you tried using "clear port-security dynamic address "
command? That will clear the MAC from the secure MAC list.
Hope this helps.
Regards,
NT
07-26-2010 09:49 PM
The issue and solution contradicts itself.
configure the port violation to make the port adapt to the new mac
Your solution.
hen a PC is moved from one location to another port violation is found in switch logs and the pc is denied access to the network
Your issue.
So why bother putting a sticky MAC address if users are allowed to move their PCs from one switch(port) to another? Observe the two-skunk-rule.
A man walks into a general store in Vermont and mentions to the owner that he has a problem. A skunk has found its way into his house. He needs to get rid of it but is afraid of being sprayed.
"No problem!" exclaims the proprietor. "Skunks love carrots. Just buy a bunch of carrots. Cut them into pieces and make a trail out of the house into the woods. Use a plank to make a ramp down the front steps."
A week later the man returns to the store. "You sure were right about skunks liking carrots", he said to the owner. "So, you got rid of him?", the owner replied.
"No", said the man. "Now I have two skunks!"
07-29-2010 10:35 AM
hi the solution leolaohoo provided doesnt solve our problem since we require port security in our switches . we just want to clear the cache of the mac table in the previous switch in which the pc was there . we removed the pc still the mac table is having it . it would be better if there is a command to refresh the mac table of the switch.
07-29-2010 10:43 AM
Hello,
Have you tried "clear port-security dynamic address" command?
Regards,
NT
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: