Solved: Re: Disable ip device tracking on trunk ports

alessandro.s · ‎07-28-2016

Hi,
following this document :

http://www.cisco.com/c/en/us/support/docs/lan-switching/8021x/119374-technote-dacl-00.html#anc17

as per best practice 'it's recommended to disable IPDT on a trunk port' and to disable IPDT on a per-port basis, two commands are suggested :

(config-if)# no ip device tracking
or
(config-if)# ip device tracking maximum 0

but it seems that above commands are not supported in my switches 2960S with IOS version 15.0(2)SE6, the first disable IPDT globalli even if i submit the command inside interface configuration, the second does not mention '0' value :

Switch(config-if)#ip device tracking maximum ?
<1-10> Maximum devices

So is it possible to disable IPDT only for trunk ports?
Best regards

hslai · ‎12-08-2019

I believe the doc mentioned the command(s) available for releases 15.2(1)E and later.

View solution in original post

Nusret · ‎12-04-2019

Hello Everyone,

We have C3850 switches, and upgrade ios from 16.6.1 to Fuji 16.9.4

We cannot set device tracking policy on 16.9.4. Do you know to anyone whats the problem ?

Because we don't want to see ip device tracking on uplink port..

We were using device tracking policy on 16.6.1 about this, but right now cannot do..

device-tracking policy DT_trunk_policy
trusted-port
device-role switch
no protocol udp

Thanks for helps

hslai · ‎12-08-2019

I see you already re-posted as How to create tracking policy in Switching, which is more appropriate for such topic.

Our lab setups are with 16.12.1s and 16.09.03s and neither has no trouble with the following configured by Cisco DNA Center.

device-tracking policy IPDT_MAX_10
 limit address-count 10
 no protocol udp
 tracking enable

Also, this also applied to the switch access interfaces but not uplinks.

hslai · ‎12-08-2019

I believe the doc mentioned the command(s) available for releases 15.2(1)E and later.