Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

port security maximum 1

why is it good or not good to set port security switchport maximum 1 ? 

Someone told me it is not good. Please explain me this.

  • LAN Switching and Routing
7 REPLIES
Hall of Fame Super Gold

Think about it:  If you have

Think about it:  If you have a phone plugged to the switch and a PC plugged to the phone, what's going to happen?

New Member

lets assume we have only one

lets assume we have only one router which is connected on that port ! but my senior told even for this case it is not good idea to assign maximum 1 value. Please explain.

Hall of Fame Super Gold

And why would you want to put

And why would you want to put port security on a trusted appliance like a router?

New Member

Thanks for your reply. I am

Thanks for your reply. I am working in data centre. When we provide our feed to client, we should have port security on our end site. My question is about concept that why it is not good idea to have port security max mac address 1. I hope this can clear my scenario.

Hall of Fame Super Gold

Unless you want to be in a

Unless you want to be in a world of constant pain, "port security max mac address <NUMBER>" is recommended configuration on access port only.  You'd have to be totally cr@zy to stick this command on an 802.1q trunk port.  

 

I won't spoon-feed you the answer (as I want to let you drive to the conclusion yourself), but if you are in a DC, how many times have you seen a server (configured properly or not) with only one MAC address?  How many have you seen servers with two or more MAC address?

New Member

Seriously , by your replies i

Seriously , by your replies i couldn't get any single knowledgeable thing. I found the answer by myself. So  Please allow others to discuss on my question.  Cheers

Hall of Fame Super Gold

Seriously , by your replies i

Seriously , by your replies i couldn't get any single knowledgeable thing. 

As I've said before, I won't spoon-feed you the answer and I'd like to let you derive to the conclusion yourself.  The answer, as to why it's not good to use the command, is found in my last post.  laugh

36
Views
0
Helpful
7
Replies
This widget could not be displayed.