Re: Port Security

leechehcheng · ‎08-22-2005

I had configured this, but when i plug in other machine with different MAC, how come it still able to access the network?

interface FastEthernet0/22

switchport mode access

switchport protected

switchport port-security

switchport port-security maximum 22

switchport port-security violation restrict

switchport port-security mac-address 0060.97ed.6092

Switch_242#show port interface fastEthernet 0/22 address

Secure Mac Address Table

-------------------------------------------------------------------

Vlan Mac Address Type Ports Remaining Age

(mins)

---- ----------- ---- ----- -------------

1 0060.97ed.6092 SecureConfigured Fa0/22 -

-------------------------------------------------------------------

Total Addresses: 1

Georg Pauwen · ‎08-22-2005

Hello,

you are allowing a maximum of 22 MAC addresses on the port:

switchport port-security maximum 22

But you have only configured one secure MAC address:

switchport port-security mac-address 0060.97ed.6092

If you configure fewer secure MAC addresses than the maximum, the remaining MAC addresses are dynamically learned. In order to actually allow only one MAC address on the port, remove the statement 'switchport port-security maximum 22'.

HTH,

GP

AD VISSER · ‎08-23-2005

Hi,

Place command

set port security auto-configure enable

regards

aservin · ‎08-23-2005

That command is for CatOS (set port security auto-configure enable). The example is for and IOS switch. I have never configured security in a port, but I guess the answear of gpauwen is correct.

-as