Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
749
Views
0
Helpful
2
Replies

Port security reporting

Go to solution
johnny_5
Level 1
Level 1

‎08-05-2019 02:35 PM

Are there any CLI reporting one can generate off a 3850 switch to show all the switch ports that have port-security enabled besides doing the sh run command. Also any command that could pipe a report a txt showing all the switch ports that are admin down, up etc.

Trying to fulfill an audit item that requires proof of such config settings.

 

Thanks in advance.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
paul driver
VIP
VIP

‎08-06-2019 02:36 AM

Hello

I dont have access to any 3850 to test but on other switches you can pipe your run commands to a txt file on the flash using the EEM script and cron timers and theTEE/Append commands and then export them to a tftp server or you can just open a terminal emulation session like putty and log a putty session to a txt file on your pc with the latter you could also pipe out unwarranted config.

 

Example will run every monday-friday at 9:00am

event manager applet Portsec
event timer cron cron-entry "0 9 * * 1-5"
action 1.1 cli command "enable"
action 1.2 cli command "term len 0"
action 1.3 cli command "show ip int brief | tee flash:portsec.txt"
action 1.4 cli command "sh port-security | append flash:portsec.txt

 

more flash:portsec.txt

 


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul

View solution in original post

0 Helpful
2 Replies 2

Go to solution
SamanBayat4424
Level 1
Level 1

‎08-05-2019 10:06 PM - edited ‎08-06-2019 03:30 AM

I've recently checked exactly on 3850 Switch, what you said. The only command that could verify statues of port-security is "Show port-security".

Hope to help

Regards,

Saman Bayat

***Rate All Helpful Responses***

0 Helpful

Go to solution
paul driver
VIP
VIP

‎08-06-2019 02:36 AM

Hello

I dont have access to any 3850 to test but on other switches you can pipe your run commands to a txt file on the flash using the EEM script and cron timers and theTEE/Append commands and then export them to a tftp server or you can just open a terminal emulation session like putty and log a putty session to a txt file on your pc with the latter you could also pipe out unwarranted config.

 

Example will run every monday-friday at 9:00am

event manager applet Portsec
event timer cron cron-entry "0 9 * * 1-5"
action 1.1 cli command "enable"
action 1.2 cli command "term len 0"
action 1.3 cli command "show ip int brief | tee flash:portsec.txt"
action 1.4 cli command "sh port-security | append flash:portsec.txt

 

more flash:portsec.txt

 


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card