Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Webcast-Catalyst9k
New Member

Port security commmand on IOS version 12.0

Hey,

I am trying to run the switchport port-security command on this version of IOS and I keep getting an error.

Anyone know what this command is?

Thanks.

1 ACCEPTED SOLUTION

Accepted Solutions
Hall of Fame Super Bronze

Re: Port security commmand on IOS version 12.0

You need 12.1(19)EA1 or later. Please upgrade the IOS code.

__

Edison.

6 REPLIES
Hall of Fame Super Bronze

Re: Port security commmand on IOS version 12.0

You need 12.1(19)EA1 or later. Please upgrade the IOS code.

__

Edison.

New Member

Re: Port security commmand on IOS version 12.0

Thanks Edison.

Just out of curiousity does this version support port security at all.

Hall of Fame Super Bronze

Re: Port security commmand on IOS version 12.0

No, it does not. What's the issue with upgrading the code?

New Member

Re: Port security commmand on IOS version 12.0

Nope no issue just curious if it did or not.

Istvan,

Thanks for the reply but the issue is that the command is not executing. I thought as much that the version of IOS is the issue and Edison confirmed it.

Thanks guys.

Re: Port security commmand on IOS version 12.0

Hi

I just put my post because you asked:

"Anyone know what this command is? "

Cheers:

Istvan

Re: Port security commmand on IOS version 12.0

Hi,

The "switchport port-security" is a layer 2 command, together with its options it implements port-security based on mac-addresses.

If you are trying to apply it to a routed port, you will get error messages.

You can configure which source mac-addresses and/or how many of them are allowed on the port.

A small example:

interface fa1/1

switchport

switchport port-security

switchport port-security maximum 3

switchport port-security mac-address 0000.0000.0001

switchport port-security mac-address sticky

switchport port-security violation shutdown

The above config allows max. 3 mac-addresses on fa1/1.

The 1st is statically configured, the rest will be learned and put into the running-config (you have to use the copy run start to save the learned mac-addresses).

If someone wants more than 3 mac-addresses (more than 3 hosts) on the port, the port will shutdown for security.

Cheers:

Istvan

392
Views
8
Helpful
6
Replies
CreatePlease to create content