Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

port security on switch question

I discovered that our switchport on our Catalyst 6500 which connects to our PIX firewall has port security enabled on it, but it has a mac-address configured that is not the MAC of the firewall it is plugged into. Connectivity has been working fine through this port, I was wondering if someone could explain how and why. Here is the switchport config minus the real mac address.

switchport

switchport mode access

switchport port-security maximum 2

switchport port-security mac-address 0000.0000.0000

1 ACCEPTED SOLUTION

Accepted Solutions

Re: port security on switch question

Hi Matt,

This is because of the command switchport port-security maximum 2 configured on the interface which allows two mac-addresses to be learnt on the interface

I think this was configured to allow only one more mac-address to be learnt as the other address is manually configured to a dummy one.

Check out the link for more details

http://www.cisco.com/univercd/cc/td/doc/product/lan/cat4000/12_2_31a/config/port_sec.htm

HTH, rate if it does

Narayan

1 REPLY

Re: port security on switch question

Hi Matt,

This is because of the command switchport port-security maximum 2 configured on the interface which allows two mac-addresses to be learnt on the interface

I think this was configured to allow only one more mac-address to be learnt as the other address is manually configured to a dummy one.

Check out the link for more details

http://www.cisco.com/univercd/cc/td/doc/product/lan/cat4000/12_2_31a/config/port_sec.htm

HTH, rate if it does

Narayan

149
Views
0
Helpful
1
Replies
CreatePlease login to create content