SECURITY-1-PORTSHUTDOWN: Port [dec]/[dec] shutdown due to [chars]
This message indicates that a port has been shut down due to an insecure host sourcing a packet into that port; [dec]/[dec] is the module number/port number of the port that has shut down and [chars] can be either security violation or no space in forwarding engine lookup table. Because of this error,do check why the host is sourcing a packet into that port.
The switch can only have port security for 1024 MAC addresses. There is possiblly a maximum number of MAC addresses allowed to connect to a port. If that maximum number for all ports is over 1024, then when over a 1024 MAC addresses are connected to this switch, the switch will shut down those ports that port security is configured.
This problem also happens with different MAC address , sequence. Same addreses can be learnt without problem when Port security is disabled.
The term "no space in the forwarding table" is misleading since there is enough space for many mac addreses to be learnt (may be thousands of other) .
However there is no space in forwarding engine table for set of specific MAC addresses.
This can happen if different range of mac addresses gets hashed to same index.
The work-around if possible would be to disable port security for these ports if possible.
use [set cam static filter] command
To see how many ports are configured for port security use [show port securty ].
Also do a [show port security statistics system] to see the statistics for the whole system.
Question We run asr9001 with XR 6.1.3, and we have a very long delay to
login w/ SSH 1 or 2 to the device compare to IOS device. After
investigation, the there is 1s delay between the client KEXDH_INIT and
the server (XR) KEXDH_REPLY. After debug ssh serv...
Introduction The purpose of this document is to demonstrate the Open
Shortest Path First (OSPF) behavior when the V-bit (Virtual-link bit) is
present in a non-backbone area. The V-bit is signaled in Type-1 LSA only
if the router is the endpoint of one or ...
Hi, I am seeing quite a few issues with patch install and wanted to
share my experience and workaround to this. Login to admin via CLI, then
access root with the “shell” command Issue “df –h” and you’ll probably
see the following directory full or nearly ...