Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1700
Views
6
Helpful
19
Replies

Computer Unidentified network issues when Behind IP Phone

ziqex
Level 4
Level 4

‎11-27-2023 08:41 AM

Hi,

We came across weird issues. Computers connected to Switch are not working correctly when connected via cisco desk phone - showing unidentified network. Without desk phone computers working fine. Issue started +- a week ago.

port config 

interface GigabitEthernet1/0/22
switchport access vlan 20
switchport mode access
switchport nonegotiate
switchport voice vlan 40
switchport port-security maximum 2
switchport port-security violation restrict
switchport port-security aging time 2
switchport port-security aging type inactivity
switchport port-security
spanning-tree portfast
spanning-tree bpduguard enable

 

Phone type: CP-8841

More than one computer & desk phone is impacted.

switch - cisco WS-C3850-48P - 16.12.07

 

CUCM - System version: 14.0.1.12900-161

 

Any suggestion's will be highly appreciated. Thank you

Labels:
0 Helpful
19 Replies 19

balaji.bandi
Hall of Fame
Hall of Fame

‎11-27-2023 09:24 AM

You have tried removing the Phone the PC works, Have you tried  Phone alone  without PC ? is the phone works.

For testing remove the Security configuration and test it or increase the maximum to 5 and age timing to higher.

 

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

ziqex
Level 4
Level 4
In response to balaji.bandi

‎11-28-2023 01:28 AM

Phone connected on its own is working fine. Tested with internal and external calls. 

Port-security was changed.

switchport port-security maximum 5
switchport port-security aging time 5

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to ziqex

‎11-28-2023 08:32 AM

So by changing to 5 is that fixed or still have issue.

if that is resolved make this as solution.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

ziqex
Level 4
Level 4
In response to balaji.bandi

‎11-28-2023 08:33 AM

Still the issue.

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to ziqex

‎11-28-2023 08:50 AM

ok can you post show interface configuration again.

other question  in week time what was changed ? any DHCP changes ?

PC get IP address from right VLAN ? are you able to ping Local Gateway  and 8.8.8.8 ?

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

ziqex
Level 4
Level 4
In response to balaji.bandi

‎11-28-2023 10:20 AM

No changes to the network.

Stack of 4 switches. Only one switch is impacted (*1 Active).

Switch# Role Mac Address Priority Version State
-------------------------------------------------------------------------------------
*1 Active  12 V05 Ready
2 Standby  11 V07 Ready
3 Member  10 V07 Ready
4 Member  9 V07 Ready

0 Helpful

Carlo Poggiarelli
VIP
VIP
In response to ziqex

‎11-28-2023 12:07 PM

Hi,

Please reload switch 1 than send the output of a show port security and a show version 

 

Thanks

 

Carlo

Please rate all helpful posts "The more you help the more you learn"

ziqex
Level 4
Level 4
In response to Carlo Poggiarelli

‎11-29-2023 03:00 AM - edited ‎11-29-2023 03:02 AM

Port security was disabled but the same issue present:

 

sh port-security int g1/0/22
Port Security : Disabled
Port Status : Secure-down
Violation Mode : Shutdown
Aging Time : 0 mins
Aging Type : Absolute
SecureStatic Address Aging : Disabled
Maximum MAC Addresses : 1
Total MAC Addresses : 0
Configured MAC Addresses : 0
Sticky MAC Addresses : 0
Last Source Address:Vlan : 682c.7b40.7401:640
Security Violation Count : 12

0 Helpful

Carlo Poggiarelli
VIP
VIP
In response to ziqex

‎11-29-2023 03:07 AM

As I can see now the port config has maximum mac set to 1

Please increase the value and perform a shutdown no shutdown for that port

Please let us know 

 

Regards

 

Carlo

Please rate all helpful posts "The more you help the more you learn"
0 Helpful

ziqex
Level 4
Level 4
In response to Carlo Poggiarelli

‎11-29-2023 03:20 AM

Port security is disabled:

Port Security : Disabled

port config

 

interface GigabitEthernet1/0/22
switchport access vlan 20
switchport mode access
switchport nonegotiate
switchport voice vlan 40

0 Helpful

Carlo Poggiarelli
VIP
VIP

‎11-27-2023 11:16 AM - edited ‎11-27-2023 11:17 AM

Hi,

To verify the correct behavior of the switch side, you can issue the show port-security command and see if the count of Security Violations increases.

Please let us know.

Regards

 

Carlo

Please rate all helpful posts "The more you help the more you learn"

ziqex
Level 4
Level 4
In response to Carlo Poggiarelli

‎11-28-2023 01:28 AM

sh port-security int g1/0/22
Port Security : Enabled
Port Status : Secure-up
Violation Mode : Restrict
Aging Time : 5 mins
Aging Type : Inactivity
SecureStatic Address Aging : Disabled
Maximum MAC Addresses : 5
Total MAC Addresses : 2
Configured MAC Addresses : 0
Sticky MAC Addresses : 0
Last Source Address:Vlan :
Security Violation Count : 12

 

Security Violation Count - doesn't increases

0 Helpful

MHM Cisco World
VIP
VIP
In response to ziqex

‎11-28-2023 02:46 AM

Select one pc and check it mac 

The  do

Show mac address  <pc mac>

Show port-secuirty mac 

Check if pc show in other ports.

MHM Cisco World
VIP
VIP
In response to MHM Cisco World

‎11-28-2023 08:57 AM

Do you check points I ask?

The show port security show two mac connect 

Can I see

Show mac interface x

I need to see which vlan assign for both mac

Customers Also Viewed These Support Documents