cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
193
Views
0
Helpful
8
Replies
Highlighted

Cisco 3650 %PORT_SECURITY-2-PSECURE_VIOLATION: Security violation occurred, caused by MAC address

got the problem with port security on Cisco 3650:
  %PORT_SECURITY-2-PSECURE_VIOLATION: Security violation occurred, caused by MAC address
We have deskphone connected to the access switch port and PC connected to the deskphone
The port-security setup:
show port-security interface Gix/x/x
Port Security : Enabled
Port Status : Secure-up
Violation Mode : Shutdown
Aging Time : 0 mins
Aging Type : Absolute
SecureStatic Address Aging : Disabled
Maximum MAC Addresses : 3
Total MAC Addresses : 1
Configured MAC Addresses : 0
Sticky MAC Addresses : 0
Last Source Address:Vlan : xxxx.xxxx.xxxx
Security Violation Count : 50

Version: 16.3.6 CAT3K_CAA-UNIVERSALK9 

 

PC was not connected to other ports before (MAC is not sticky) 

Everyone's tags (1)
8 REPLIES 8
VIP Expert

Re: Cisco 3650 %PORT_SECURITY-2-PSECURE_VIOLATION: Security violation occurred, caused by MAC address

Maximum MAC Addresses : 3

This can happen with devices that come with multiple MAC address entries like multiple VMs whiting a PC. 

Try raising the max to a higher number and test again.

HTH

Re: Cisco 3650 %PORT_SECURITY-2-PSECURE_VIOLATION: Security violation occurred, caused by MAC address

Thank you Reza!
Actually, this is clients laptops and they have no VM software installed
How I can find the reason why the port been error-dissabled?
The message said only:  %PORT_SECURITY-2-PSECURE_VIOLATION: Security violation occurred, caused by MAC address <MAC> interface <>

VIP Expert

Re: Cisco 3650 %PORT_SECURITY-2-PSECURE_VIOLATION: Security violation occurred, caused by MAC address

Hi,

Violation Mode : Shutdown

The port has gone to error disable because of this command and because there was a security violation on that port.  So, some how someone connected multiple devices to that port (more than 3).

Also, if I remember correctly, I think there are some security applications that is usually used by Infosec that don't work well with port security.  So, you want to check with the owner of that PC.

HTH

Re: Cisco 3650 %PORT_SECURITY-2-PSECURE_VIOLATION: Security violation occurred, caused by MAC address

Thank you Reza
I'll check if they used something like Infosec 

Enthusiast

Re: Cisco 3650 %PORT_SECURITY-2-PSECURE_VIOLATION: Security violation occurred, caused by MAC address


PC connected to the deskphone ? is it IP phone? so that is 2 MACs. where is 3rd one coming from?

IOS 16 code on 3650 is probably bad idea; 3650 was one of first platform; the code is very buggy.

 

Re: Cisco 3650 %PORT_SECURITY-2-PSECURE_VIOLATION: Security violation occurred, caused by MAC address

Hello  MartinLo,
It shouldn't be 3d MAC address there but for some reason, it happens
We are still looking for the cause of this issue
Maybe we will open the Cisco TAC case for troubleshooting

Thank you!
Advocate

Re: Cisco 3650 %PORT_SECURITY-2-PSECURE_VIOLATION: Security violation occurred, caused by MAC address

Re: Cisco 3650 %PORT_SECURITY-2-PSECURE_VIOLATION: Security violation occurred, caused by MAC address

Thank you Luis!
We'll check it
I thought it should be something wrong as we had exactly the same settings for the old switches C4506 and everything works just fine

CreatePlease to create content
Content for Community-Ad
July's Community Spotlight Awards