Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
389
Views
0
Helpful
1
Replies

Port Security issue on the Cat 2950 with IOS ver 12.1.11EA1

dfelter
Level 1
Level 1

‎09-23-2002 09:51 AM - edited ‎03-02-2019 01:33 AM

Ports configured with the "sticky" port security feature do not shutdown (errordisable) when a host with a different MAC address attempts to access the port. Note that the default of 1 secure MAC address and a violation mode of shutdown has not been changed.

The configuration on port fa0/1 is :

switch port-security

switch port-security mac-address sticky

switch port-security mac-address sticky 0010.4bf9.1f6a (this was the MAC address initially learned on the port)

When I connect a different host to port fa0/1 with address 0010.4bf9.1f74, the port does not go into the errordisable state as expected.

Note that if I configured a static secure mac address on the port with a configuration on port fa0/1 of:

switch port-security

switch port-security mac-address 0010.4bf9.1f6a

the port does go to the errordisable state, as expected, when a host with a different MAC address attempts to access the port.

Has anyone else observed this behavior? Is this a software bug?

Labels:
0 Helpful
1 Reply 1

Prashanth Krishnappa
Cisco Employee
Cisco Employee

‎09-23-2002 11:08 AM

There is a bug open for a similar issue

http://www.cisco.com/cgi-bin/bugtool/onebug.pl?bugid=CSCdy62705

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card