Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1172
Views
0
Helpful
5
Replies

Switchport Access VLAN 123

rwamstutz
Level 1
Level 1

‎06-18-2007 09:23 AM - edited ‎03-05-2019 04:47 PM

All, what happens if a port is configured as:

interface GigabitEthernet1/0/21

switchport access vlan 100

spanning-tree portfast

but does not have switchport mode access?

is the switchport mode access command needed?

Labels:
0 Helpful
5 Replies 5

Edison Ortiz
Hall of Fame
Hall of Fame

‎06-18-2007 09:54 AM

If you connect another switch on this port, it may trunk if you don't set the switchport mode access.

By entering the switchport mode access, you are forcing the port to only use access mode.

You can view the current switchport mode by typing:

show int g1/0/21 switchport

0 Helpful

rwamstutz
Level 1
Level 1
In response to Edison Ortiz

‎06-18-2007 10:02 AM

so it really doesnt hurt anything by not having the command, but without it, if someone were to plug a switch into that port, it would go into trunking mode?

0 Helpful

Edison Ortiz
Hall of Fame
Hall of Fame
In response to rwamstutz

‎06-18-2007 10:05 AM

It may go into trunking mode, yes.

In a secure environment, it's always recommended to enter the switchport mode access command.

Can you post the 'show int g1/0/21 switchport' output ?

0 Helpful

rwamstutz
Level 1
Level 1
In response to Edison Ortiz

‎06-18-2007 10:12 AM

This is the output on a port without the switchport mode access command:

BOSTON#sh int g4/0/12 switchport

Name: Gi4/0/12

Switchport: Enabled

Administrative Mode: dynamic auto

Operational Mode: static access

Administrative Trunking Encapsulation: negotiate

Operational Trunking Encapsulation: native

Negotiation of Trunking: On

Access Mode VLAN: 101 (VLAN0101)

Trunking Native Mode VLAN: 1 (default)

Administrative Native VLAN tagging: enabled

Voice VLAN: none

Administrative private-vlan host-association: none

Administrative private-vlan mapping: none

Administrative private-vlan trunk native VLAN: none

Administrative private-vlan trunk Native VLAN tagging: enabled

Administrative private-vlan trunk encapsulation: dot1q

Administrative private-vlan trunk normal VLANs: none

Administrative private-vlan trunk private VLANs: none

Operational private-vlan: none

Trunking VLANs Enabled: ALL

Pruning VLANs Enabled: 2-1001

Capture Mode Disabled

Capture VLANs Allowed: ALL

Protected: false

Unknown unicast blocked: disabled

Unknown multicast blocked: disabled

Appliance trust: none

0 Helpful

Edison Ortiz
Hall of Fame
Hall of Fame
In response to rwamstutz

‎06-18-2007 11:31 AM

As you can see:

BOSTON#sh int g4/0/12 switchport

Name: Gi4/0/12

Switchport: Enabled

Administrative Mode: dynamic auto

Operational Mode: static access

Administrative Trunking Encapsulation: negotiate

_____________

Administrative mode is set to dynamic auto, if you connect a switch with dynamic mode desirable, it will form a trunk. A switch with dynamic mode auto, won't form a trunk. So, it depends on the type of switch you connect here.

Currently, the port is running:

Operational Mode: static access

because that's what it sensed from the workstation connection.

You should be fine under this config but I wanted to point out, the 'what if' ..

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card