cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
109
Views
0
Helpful
2
Replies
Highlighted
Beginner

Port security reporting

Are there any CLI reporting one can generate off a 3850 switch to show all the switch ports that have port-security enabled besides doing the sh run command. Also any command that could pipe a report a txt showing all the switch ports that are admin down, up etc.

Trying to fulfill an audit item that requires proof of such config settings.

 

Thanks in advance.

Everyone's tags (2)
1 ACCEPTED SOLUTION

Accepted Solutions
VIP Advisor

Re: Port security reporting

Hello

I dont have access to any 3850 to test but on other switches you can pipe your run commands to a txt file on the flash using the EEM script and cron timers and theTEE/Append commands and then export them to a tftp server or you can just open a terminal emulation session like putty and log a putty session to a txt file on your pc with the latter you could also pipe out unwarranted config.

 

Example will run every monday-friday at 9:00am

event manager applet Portsec
event timer cron cron-entry "0 9 * * 1-5"
action 1.1 cli command "enable"
action 1.2 cli command "term len 0"
action 1.3 cli command "show ip int brief | tee flash:portsec.txt"
action 1.4 cli command "sh port-security | append flash:portsec.txt

 

more flash:portsec.txt

 



kind regards
Paul

Please rate and mark posts accordingly if you have found any of the information provided useful.
It will hopefully assist others with similar issues in the future
2 REPLIES 2
Beginner

Re: Port security reporting

I've recently checked exactly on 3850 Switch, what you said. The only command that could verify statues of port-security is "Show port-security".

Hope to help

Regards,

Saman Bayat

***Rate All Helpful Responses***

VIP Advisor

Re: Port security reporting

Hello

I dont have access to any 3850 to test but on other switches you can pipe your run commands to a txt file on the flash using the EEM script and cron timers and theTEE/Append commands and then export them to a tftp server or you can just open a terminal emulation session like putty and log a putty session to a txt file on your pc with the latter you could also pipe out unwarranted config.

 

Example will run every monday-friday at 9:00am

event manager applet Portsec
event timer cron cron-entry "0 9 * * 1-5"
action 1.1 cli command "enable"
action 1.2 cli command "term len 0"
action 1.3 cli command "show ip int brief | tee flash:portsec.txt"
action 1.4 cli command "sh port-security | append flash:portsec.txt

 

more flash:portsec.txt

 



kind regards
Paul

Please rate and mark posts accordingly if you have found any of the information provided useful.
It will hopefully assist others with similar issues in the future
CreatePlease to create content
Content for Community-Ad
July's Community Spotlight Awards