Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
937
Views
5
Helpful
4
Replies

Differenece bw sticky mac-add vs setting static secure MAC-add vs Switchport port-security maximum 1

Go to solution
ITexpert
Level 3
Level 3

‎09-13-2018 07:56 AM - edited ‎03-08-2019 04:09 PM

Hello Guys,

 

@Daniele Giordano  @Georg Pauwen  @Joseph W. Doherty @Reza Sharifi @paul driver

 

My goal is to achieve is that port learn mac-address but then commit to that Mac address, so if i change end device it gets err-disabled.

 

Thanks

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Seb Rupik
VIP Alumni
VIP Alumni
In response to ITexpert

‎09-13-2018 09:12 AM

Hi there,

The switchport port-security max 1 will limit the number of MAC addresses permitted concurrently on a switchport.

 

Using sticky mac will allow the switch to learn the MAC addresses permitted. Obviously it will only learn a MAC address whilst the maximum number has not been exceed.

 

static secure allows an administrator to manually define the permitted MAC addresses on a switchport.

 

cheers,

Seb.

View solution in original post

4 Replies 4

Go to solution
Daniele Giordano
Level 8
Level 8

‎09-13-2018 08:02 AM

Hi, you can try to use port-security feature.

 

https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst4500/12-2/25ew/configuration/guide/conf/port_sec.html

 

Regards.

0 Helpful

Go to solution
ITexpert
Level 3
Level 3
In response to Daniele Giordano

‎09-13-2018 08:29 AM

Hello @Daniele Giordano

 

I tried with port-security and it works but my answer is still not complete.

 

Then whats the difference of using other commands ?

 

Thanks

0 Helpful

Go to solution
Seb Rupik
VIP Alumni
VIP Alumni
In response to ITexpert

‎09-13-2018 09:12 AM

Hi there,

The switchport port-security max 1 will limit the number of MAC addresses permitted concurrently on a switchport.

 

Using sticky mac will allow the switch to learn the MAC addresses permitted. Obviously it will only learn a MAC address whilst the maximum number has not been exceed.

 

static secure allows an administrator to manually define the permitted MAC addresses on a switchport.

 

cheers,

Seb.

Go to solution
Pamarthy
Level 1
Level 1

‎09-13-2018 12:46 PM

The main difference is at the time of port security you give the MAC address manually or assigning directly by using command sticky, this command allowed the MAC address to which the port is connected right now directly. This mainly helps for the semi big networks which have more than 25 switchs because for every port to copy the MAC address and assign at the time of port security is a big task because of each switch have 24 ports.

0 Helpful
Customers Also Viewed These Support Documents