Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3869
Views
0
Helpful
3
Replies

Port Security with mac configured and last source address

mahesh18
Level 6
Level 6

‎02-02-2013 08:11 AM - edited ‎03-07-2019 11:28 AM

Hi Everyone,

I config port security on port fa0/4

interface FastEthernet0/4

  switchport access vlan 10

switchport mode access

switchport port-security

switchport port-security mac-address f0bf.97de.4f48

logging event spanning-tree

spanning-tree portfast

end

mac address-table int fa0/4

          Mac Address Table

-------------------------------------------

Vlan    Mac Address       Type        Ports

----    -----------       --------    -----

  10    f0bf.97de.4f48    STATIC      Fa0/4

Total Mac Addresses for this criterion: 1

sh port-security int fa0/4

Port Security              : Enabled

Port Status                : Secure-up

Violation Mode             : Shutdown

Aging Time                 : 0 mins

Aging Type                 : Absolute

SecureStatic Address Aging : Disabled

Maximum MAC Addresses      : 1

Total MAC Addresses        : 1

Configured MAC Addresses   : 1

Sticky MAC Addresses       : 0

Last Source Address        : 0000.0000.0000**************************************************************

Security Violation Count   : 0

Need to confirm if config the mac address with switch port-security mac-address xxxxx.xxxx.xxxx

and when we run the command

sh port-security int   does it always show last source address as 00000.0000.0000???

Thanks

MAhesh

Labels:
0 Helpful
3 Replies 3

Reza Sharifi
Hall of Fame
Hall of Fame

‎02-02-2013 01:38 PM

Hi Mahesh,

The last source mac address is whatever the last mac address of the device that is connected to this port.

in this example a PC is connected to port 1/0/45 and this port is in vlan 10

have a look:

Switch#sh port-security interface gigabitEthernet 1/0/45

Port Security              : Enabled

Port Status                : Secure-up

Violation Mode             : Shutdown

Aging Time                 : 0 mins

Aging Type                 : Absolute

SecureStatic Address Aging : Disabled

Maximum MAC Addresses      : 2

Total MAC Addresses        : 1

Configured MAC Addresses   : 0

Sticky MAC Addresses       : 1

Last Source Address:Vlan   : 0021.70e8.99d1:10

Security Violation Count   : 0

Switch#sh mac address-table interface gigabitEthernet 1/0/45

          Mac Address Table

-------------------------------------------

Vlan    Mac Address       Type        Ports

----    -----------       --------    -----

  10    0021.70e8.99d1    STATIC      Gi1/0/45

Total Mac Addresses for this criterion: 1

Switch#

HTH

Reza

0 Helpful

acampbell
VIP Alumni
VIP Alumni
In response to Reza Sharifi

‎02-02-2013 02:00 PM

Mahesh,

See this posting.

The guys there reckon this is a client issue

https://supportforums.cisco.com/thread/2073200

Regards,
Alex.
Please rate useful posts.

Regards, Alex. Please rate useful posts.
0 Helpful

mahesh18
Level 6
Level 6
In response to acampbell

‎02-08-2013 09:15 PM

Hi Reza & alex,

When i config command

switchport port-security max 2

then it shows the mac under port security

sh port-security int fa0/4

Port Security              : Enabled

Port Status                : Secure-up

Violation Mode             : Shutdown

Aging Time                 : 0 mins

Aging Type                 : Absolute

SecureStatic Address Aging : Disabled

Maximum MAC Addresses      : 2

Total MAC Addresses        : 1

Configured MAC Addresses   : 1

Sticky MAC Addresses       : 0

Last Source Address        : f0bf.97de.4f48

Security Violation Count   : 0

Seems when port has max mac address configured as 1 and we also config the mac under port security then it shows

mac 0000 under last source address.

Thanks

Mahesh

0 Helpful
Customers Also Viewed These Support Documents