Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1023
Views
0
Helpful
0
Replies

PORT_SECURITY-2-SECURITYREJECT

Mark Bracking
Level 1
Level 1

‎03-14-2011 01:57 AM - edited ‎03-09-2019 11:26 PM

I have a action tech pk5000 that i run into a Cisco C2924-XL-EN. I have attached the running-config to show how the switch is set up. The problem I am haveing is the i keep getting a security violation on port one ( i have also include a copy of this ) that shuts down the port and the rest of the switch. The mac that is causing the problem is not on my network--so how can i fix this and prevent it from happening any more. thank for the help--mark Current configuration:
!
! Last configuration change at 01:41:58 UTC Mon Mar 14 2011
!
version 12.0
no service pad
service timestamps debug uptime
service timestamps log uptime
service password-encryption
!
hostname LAN_Switch
!
enable secret 5 $1$FFaN$YFtNzyeTbEzcWO7wzgXlr0
enable password 7 05261F5E716C40080B063F5C080309
!
!
!
!
!
!
ip subnet-zero
!
!
!
interface FastEthernet0/1
shutdown
port security max-mac-count 1
port security action shutdown
port block unicast
port block multicast
switchport access vlan 10
!
interface FastEthernet0/2
port security max-mac-count 1
port security action shutdown
port block unicast
port block multicast
switchport access vlan 10
!
interface FastEthernet0/3
port security max-mac-count 1
port security action shutdown
port block unicast
port block multicast
switchport access vlan 10
!
interface FastEthernet0/4
port security max-mac-count 1
port security action shutdown
port block unicast
port block multicast
switchport access vlan 10
!
interface FastEthernet0/5
port security max-mac-count 4
port security action shutdown
port block unicast
port block multicast
switchport access vlan 10
!
interface FastEthernet0/6
port security max-mac-count 1
port security action shutdown
port block unicast
port block multicast
switchport access vlan 10
!
interface FastEthernet0/7
port security max-mac-count 1
port security action shutdown
port block unicast
port block multicast
switchport access vlan 10
!
interface FastEthernet0/8
port security max-mac-count 1
port security action shutdown
port block unicast
port block multicast
switchport access vlan 10
!
interface FastEthernet0/9
shutdown
!
interface FastEthernet0/10
shutdown
!
interface FastEthernet0/11
shutdown
!
interface FastEthernet0/12
shutdown
!
interface FastEthernet0/13
shutdown
!
interface FastEthernet0/14
shutdown
!
interface FastEthernet0/15
shutdown
!
interface FastEthernet0/16
shutdown
!
interface FastEthernet0/17
shutdown
!
interface FastEthernet0/18
shutdown
!
interface FastEthernet0/19
shutdown
!
interface FastEthernet0/20
shutdown
!
interface FastEthernet0/21
shutdown
!
interface FastEthernet0/22
shutdown
!
interface FastEthernet0/23
shutdown
!
interface FastEthernet0/24
shutdown
!
interface VLAN1
no ip address
no ip directed-broadcast
no ip route-cache
!
interface VLAN10
ip address 192.168.0.11 255.255.255.0
no ip directed-broadcast
no ip route-cache
!
ip default-gateway 192.168.0.1
mac-address-table secure xxxx.xxxx.xxxx FastEthernet0/5 vlan 10
mac-address-table secure xxxx.xxxx.xxxx FastEthernet0/2 vlan 10
mac-address-table secure xxxx.xxxx.xxxx FastEthernet0/6 vlan 10
mac-address-table secure xxxx.xxxx.xxxx FastEthernet0/1 vlan 10
mac-address-table secure xxxx.xxxx.xxxx FastEthernet0/8 vlan 10
mac-address-table secure xxxx.xxxx.xxxx FastEthernet0/3 vlan 10
mac-address-table secure xxxx.xxxx.xxxx FastEthernet0/4 vlan 10
banner motd ^C Private Switch Please Log Off ^C
!
line con 0
transport input none
stopbits 1
line vty 0 4
password 7 0722381D1E291704051123
login
line vty 5 9
password 7 0236541F4F315F3348
login
!
end 04:47:10: %PORT_SECURITY-2-SECURITYREJECT: Security violation occurred on module0 port 1 caused by MAC address 000c.f1ed.9921--not part of my network 04:47:10: %LINK-5-CHANGED: Interface FastEthernet0/1, changed state to administratively down 04:47:11: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/1, changed state to down

Problem Fixed---The ActionTec Pk 5000 has two mac adress asigned to it one for the device and one for the 4 port switch. The ip that was causing port 1 to shut down was comming from a wireless connection--i guess the actiontech jsust passes the mac through the device to the first port. turned of wireless access and reset the port 1 one the switch--no more problems with PORT_SECURITY-2-SECURITYREJECT. thanks for looking

Message was edited by: Mark Bracking

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents