08-05-2019 02:35 PM
Are there any CLI reporting one can generate off a 3850 switch to show all the switch ports that have port-security enabled besides doing the sh run command. Also any command that could pipe a report a txt showing all the switch ports that are admin down, up etc.
Trying to fulfill an audit item that requires proof of such config settings.
Thanks in advance.
Solved! Go to Solution.
08-06-2019 02:36 AM
Hello
I dont have access to any 3850 to test but on other switches you can pipe your run commands to a txt file on the flash using the EEM script and cron timers and theTEE/Append commands and then export them to a tftp server or you can just open a terminal emulation session like putty and log a putty session to a txt file on your pc with the latter you could also pipe out unwarranted config.
Example will run every monday-friday at 9:00am
event manager applet Portsec
event timer cron cron-entry "0 9 * * 1-5"
action 1.1 cli command "enable"
action 1.2 cli command "term len 0"
action 1.3 cli command "show ip int brief | tee flash:portsec.txt"
action 1.4 cli command "sh port-security | append flash:portsec.txt
more flash:portsec.txt
08-05-2019 10:06 PM - edited 08-06-2019 03:30 AM
I've recently checked exactly on 3850 Switch, what you said. The only command that could verify statues of port-security is "Show port-security".
Hope to help
Regards,
Saman Bayat
***Rate All Helpful Responses***
08-06-2019 02:36 AM
Hello
I dont have access to any 3850 to test but on other switches you can pipe your run commands to a txt file on the flash using the EEM script and cron timers and theTEE/Append commands and then export them to a tftp server or you can just open a terminal emulation session like putty and log a putty session to a txt file on your pc with the latter you could also pipe out unwarranted config.
Example will run every monday-friday at 9:00am
event manager applet Portsec
event timer cron cron-entry "0 9 * * 1-5"
action 1.1 cli command "enable"
action 1.2 cli command "term len 0"
action 1.3 cli command "show ip int brief | tee flash:portsec.txt"
action 1.4 cli command "sh port-security | append flash:portsec.txt
more flash:portsec.txt
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide