01-06-2021 12:30 AM
I have a large enterprise customer with 10 stacks of N*2960X switches running 15.2(7)E2. Issue is reported across all stacks.
Due to Covid customer has a lot of staff working from home and RDPing into their office machines. After upgrading and deploying port security customer reported remote users getting disconnected. IT would reboot the target machine connected to switch stack and the staff would be able to reconnect. Only for it to happen again at random intervals.
Staff working in the office local to their machines don't experience this issue despite having the same switch port config.
We removed the port security config and the issue stopped. Re-applied port security and issue re-appears.
User port config
interface GigabitEthernet2/0/7
description VOIP port
switchport access vlan 110
switchport mode access
switchport voice vlan 210
switchport priority extend trust
switchport port-security maximum 3
switchport port-security aging time 5
switchport port-security
no logging event link-status
no snmp trap link-status
storm-control broadcast level 10.00
storm-control action shutdown
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input MS_TEAMS_QOS
end
Solved! Go to Solution.
01-06-2021 01:40 AM
Hello,
looking at what you have configured, the only parameter that could cause this, if it is due to port security, is the aging time.
Can you configure one port with the below and test if the user connecting to this port still experiences problems ?
switchport port-security aging time 3600
switchport port-security aging type inactivity
01-11-2021 03:22 AM
Thank you that does seem to have stopped the users being disconnected.
01-06-2021 12:41 AM
what was the old version?
01-06-2021 12:46 AM
Multiple different versions. This was a new customer and we inherited a badly managed network. So we are standardising configs and IOS versions.
01-06-2021 01:41 AM - edited 01-06-2021 01:42 AM
i was asking that "you mentioned in original post upgraded the IOS and deployed", is the before IOS worked as expected ?
how is your network do you have any diagram to understand., why you think switch only have issue ?
if you remove port-security is that works ?
01-06-2021 01:40 AM
Hello,
looking at what you have configured, the only parameter that could cause this, if it is due to port security, is the aging time.
Can you configure one port with the below and test if the user connecting to this port still experiences problems ?
switchport port-security aging time 3600
switchport port-security aging type inactivity
01-11-2021 03:22 AM
Thank you that does seem to have stopped the users being disconnected.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide