Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
812
Views
0
Helpful
6
Replies

Endpoint Mac Address Blocked in a Specific VLAN

Malik_zoubir
Level 1
Level 1

‎01-21-2020 02:26 AM

Hello,

I had a weird problem, where a mac address of a specific Laptop blocked in a very specific VLAN and switch.

 

First it was blocked because of a portsecurity violation. I deleted the PortSecurity and had the same problem. But when i change the vlan or the switch, it work Perfectly.

 

Every other laptop worked perfectly and the laptop in question worked in other vlans and switches.

Do you have Any clear Idea about

Labels:
0 Helpful
6 Replies 6

Georg Pauwen
VIP
VIP

‎01-21-2020 03:23 AM

Hello,

 

odd indeed, could be a bug. What switch is that on ? Try and delete the Vlan, than re-add it, maybe that helps...

0 Helpful

Malik_zoubir
Level 1
Level 1
In response to Georg Pauwen

‎01-21-2020 03:33 AM

Hello, thank you for your answer.

The vlan is on production 24/7. I will go further on the issue this evening perhaps something is wrong with that laptop.

 

 

0 Helpful

Georg Pauwen
VIP
VIP
In response to Malik_zoubir

‎01-21-2020 04:00 AM

Do other devices connected to the same Vlan on the same switch work without problems ?

0 Helpful

Malik_zoubir
Level 1
Level 1
In response to Georg Pauwen

‎01-21-2020 06:25 AM

Yes they do. and this same laptop connect easily in other vlan same switch or other switch same vlan....
I cleared arp and mac addresse.

Thank you
0 Helpful

lucasfreitas83
Level 1
Level 1

‎01-21-2020 04:35 AM

Hello Malik_zoubir,

 

Port security configuration has mac sticky? if yes, verify in running-config exists MAC assign in port.

 

Please, share port configuration and show mac add int X.

 

This vlan is normal or private vlan?

 

In another vlan in the same switch works fine?

 

Try put fixed IP in this vlan for tests.

 

Please rate and mark posts accordingly if you have found any of the information provided useful.
It will hopefully assist others with similar issues in the future.

Best regards,
Lucas Freitas

0 Helpful

Malik_zoubir
Level 1
Level 1
In response to lucasfreitas83

‎01-21-2020 06:23 AM

Hello and thank you for your answer,
- in Show mac address-table int = I have nothing
- Port security : the configuration bellow:
"switchport port-security maximum 3
switchport port-security maximum 2 vlan access
switchport port-security violation restrict
switchport port-security aging time 1
switchport port-security aging type inactivity
switchport port-security"
- It works perfectly for other laptops, and in other vlan. But not in vlan 10 in that switch.
- Vlan is not an interface can't put an ip addresse, the routing is on the firewall.
To counter the problem I just assigned another vlan to this user.

Here are all the details.
thx


0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card