Can you please help with the following
We have a number of 3750 stacks used as access layer switches connecting Siemens VOIP phones and then a PC that connects to the phone.
For example if I plug PC A to the phone that connects to port 13 I pick up an IP addressand all works as predicted now if I plug in PC A to any other VOIP phone that connect to another port on the same switch it goes in error disable state ITs like the switch is holding my PC mac address and locks it down with the port which in my case is Gi2/0/13.
switchport access vlan 726
switchport mode access
switchport port-security maximum 10
mls qos trust dscp
Any help is much appreciated
A switch will not be automatically blocked. But it will if more than X (with X=1 as you didn't specify any maximum in your new config) MAC-addresses are seen.
If you also want to protect your infrastructure against rougue switches you could also consider Rootguard or even BPDUguard.
switchport port-security maximum 2
Something is missing here ...
Ok, you've enabled port-security and you've specified up to 2 MAC addresses allowed. My question is what will the switch DO when three or more MAC addresses are learnt from a port? Specifically, what ACTIONS did you specify the switchport to do when this event happens. I believe the default is "error-disable".
Add the following lines and see what happens:
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity