Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2608
Views
3
Helpful
1
Replies

Dynamic Port Security

Go to solution
adilhayat
Level 1
Level 1

‎02-07-2011 01:15 AM - edited ‎03-06-2019 03:23 PM

Dear All,

With dynamic port security, I was able to disconnect one device and able to connect other one. However with sticky only those devices were allowed which were learnt i.e. 2 address IP phone and PC.  I have 3560E switches. With three address allowed one can disconnect IP phone and connect two pcs using HUB. Please correct me if I am wrong ? Which port security would u recommend to IP phones setup if we dont want any one to allow any device other than company assets. To me sticky and static are options where we want to restrict only certain devices to be connected to our network, however it may lead to significant shutdown of ports, which option do u recommed to LAN around 700 devices. Many Thanks

Port Security              : Enabled

Port Status                : Secure-up

Violation Mode             : Shutdown

Aging Time                 : 0 mins

Aging Type                 : Absolute

SecureStatic Address Aging : Disabled

Maximum MAC Addresses      : 3

Total MAC Addresses        : 3

Configured MAC Addresses   : 0

Sticky MAC Addresses       : 0

Last Source Address:Vlan   : 0xxx.xx.xxx:44

Security Violation Count   : 0

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Latchum Naidu
VIP Alumni
VIP Alumni

‎02-07-2011 01:33 AM

Hi,

Hope the below one will help you......Please try the below under the interface config mode...

#switchport mode access
#switchport port-security maximum 2
#switchport port-security mac-address sticky
#switchport port-security violation restrict

Setting port security to a max of 2, will allow the switch to learn two mac addresses. Default is 1 if port security is turned on.

Please rate the helpfull posts...

Regards,
Naidu.

View solution in original post

1 Reply 1

Go to solution
Latchum Naidu
VIP Alumni
VIP Alumni

‎02-07-2011 01:33 AM

Hi,

Hope the below one will help you......Please try the below under the interface config mode...

#switchport mode access
#switchport port-security maximum 2
#switchport port-security mac-address sticky
#switchport port-security violation restrict

Setting port security to a max of 2, will allow the switch to learn two mac addresses. Default is 1 if port security is turned on.

Please rate the helpfull posts...

Regards,
Naidu.

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card