may you share the command which you are trying to configure, as sticky feature belongs to port-security. And it ensures that port remembers the mac-address/machine connected to it. Adding a document for same:
"You can configure an interface to convert the dynamic MAC addresses to sticky secure MAC addresses and to add them to the running configuration by enabling sticky learning. To enable sticky learning, enter the switchportport-security mac-address sticky command. When you enter this command, the interface converts all the dynamic secure MAC addresses, including those that were dynamically learned before sticky learning was enabled, to sticky secure MAC addresses.
The sticky secure MAC addresses do not automatically become part of the configuration file, which is the startupconfiguration used each time the switch restarts. If you save the sticky secure MAC addresses in the configuration file, when the switch restarts, the interface does not need to relearn these addresses. If you do not save the configuration, they are lost."
If you enable 'port-security mac-address sticky', whatever devices MAC address that is plugged in will remain on that port until an administrator removes it from the port or the switch is restarted. This is beneficial if you're looking for a security feature where only ONE device (phone & laptop) will be stationary and never moved.
Whatever parameters you set, example, how many mac addresses can be saved per port, what the violation is set to, etc, will determine how often you have to monitor this port or correct it from an err-disabled state.
My suggestion would be
Interface GigabitEthernet #/#/#
switchport access vlan ##
switchport mode access
switchport voice vlan ##
switchport port-security maximum 3
switchport port-security maximum 2 vlan access
switchport port-security maximum 1 vlan voice
switchport port-security mac-address sticky
switchport port-security violation restrict
This will also void any auditor findings you may come across, another command you can do is "errdisable recovery cause all" which will recover the port in a given amount of time from various causes of err-disabling causing actions.
[toc:faq]The ProblemOn traditional switches whenever we have a trunk
interface we use the VLAN tag to demultiplex the VLANs. The switch needs
to determine which MAC Address table to look in for a forwarding
decision. To do this we require the switch to do...
[toc:faq]Introduction:Netdr is a tool available on a RSP720, Sup720 or
Sup32 that allows one to capture packets on the RP or SP inband. The
netdr command can be used to capture both Tx and Rx packets in the
software switching path. This is not a substitut...
IntroductionOSPF, being a link-state protocol, allows for every router
in the network to know of every link and OSPF speaker in the entire
network. From this picture each router independently runs the Shortest
Path First (SPF) algorithm to determine the b...