Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1181
Views
0
Helpful
4
Replies

Port security issues on SG350's

levelupmsp
Level 1
Level 1

‎11-04-2021 05:43 AM - edited ‎11-04-2021 05:44 AM

Here are the scenarios I've seen.

 

Problem 1: Plugin a band new device into a switch. We get an IP address but cannot ping/connect to anything. 

Solutions: BDPU Guard got enabled, Port Security got locked, Disabling 802.3 Energy Efficient Ethernet, Delete the affected mac address from the Mac Address table.

 

Problem 2: Device is plugged into a specific port in the switch. We now move that device to a different port. We get an IP address but cannot ping/connect to anything. 

Solution: Delete the affected mac address from the Mac Address table.

 

Does anyone know why these issues occur? We are on the latest firmware. Anyone else have these issues?

Labels:
0 Helpful
4 Replies 4

paul driver
VIP
VIP

‎11-04-2021 07:02 AM

Hello

What device are you attaching and what type of port security is applied?


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful

levelupmsp
Level 1
Level 1
In response to paul driver

‎11-04-2021 08:46 AM

We frequently have these issues with a SG350-52. We typically wouldn't port security features on the switch but we find we have to, to prevent them from being locked out. As of now, this is what we do to mitigate certain issues, yet the settings happen to change on their own again:

 

1. Disable Energy Efficient Ethernet

2. Enable Link Flap Prevention

3. Disable administrative auto smartport

4. Enable Rapid STP

5. Set BDPU guard to disabled except if the port is uplinked to another switch

6. Port security set to locked > classic lock  > forward

 

0 Helpful

marce1000
Hall of Fame
Hall of Fame

‎11-04-2021 07:08 AM

 

 - Review this document (and your settings) accordingly : 

           https://www.cisco.com/c/en/us/support/docs/smb/switches/cisco-small-business-200-series-managed-switches/smb85-port-security-configuration-on-the-200-300-series-managed-sw.html

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

levelupmsp
Level 1
Level 1
In response to marce1000

‎11-04-2021 08:49 AM

Thanks but reviewing this document isn't helpful. I've already reviewed it previously but maybe the problem is I don't understand what the settings mean or what I'm looking for.

 

Ultimately, I don't want port security. All I want is the port to NEVER stop forwarding packets. If you can give me the magic combination to do so, I would be greatly appreciative.

0 Helpful
Customers Also Viewed These Support Documents