05-12-2015 12:03 AM - edited 03-07-2019 11:58 PM
Hi All,
i have one 48 port switch and i have applied port security in first 40 ports. these 40 ports are connected to user desks and other 8 ports are connected to meeting room. I have applied mac address sticky in those 40 ports. Now problem is users take their laptops and connect it to the meeting room ports if they have any meetings, and they wont get the IP address,as their mac address is binded to the desk ports.
So is there any solution for this issue? The users must get IP address when they connect to the meeting room ports without removing the port security from user desks.
Thanks
05-12-2015 12:23 AM
Instead of configuring it sticky (and, why did you use sticky?) you can configure port-security with a timeout:
switchport port-security maximum 3 switchport port-security switchport port-security aging time 2 switchport port-security violation restrict switchport port-security aging type inactivity
05-12-2015 12:46 AM
Thanks karsten for the reply.
Sticky needs to applied.. becoz if a user is on leave for a day, the mac address learned in that port will get expired, right. so at that time an outsider can connect to that port and access the network
05-12-2015 12:52 AM
With these needs, you should implement 802.1x and not port-security.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide