Solved: port security on switch question

mjsully · ‎10-18-2006

I discovered that our switchport on our Catalyst 6500 which connects to our PIX firewall has port security enabled on it, but it has a mac-address configured that is not the MAC of the firewall it is plugged into. Connectivity has been working fine through this port, I was wondering if someone could explain how and why. Here is the switchport config minus the real mac address.

switchport

switchport mode access

switchport port-security maximum 2

switchport port-security mac-address 0000.0000.0000

royalblues · ‎10-18-2006

Hi Matt,

This is because of the command switchport port-security maximum 2 configured on the interface which allows two mac-addresses to be learnt on the interface

I think this was configured to allow only one more mac-address to be learnt as the other address is manually configured to a dummy one.

Check out the link for more details

http://www.cisco.com/univercd/cc/td/doc/product/lan/cat4000/12_2_31a/config/port_sec.htm

HTH, rate if it does

Narayan

View solution in original post

royalblues · ‎10-18-2006