Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1963
Views
0
Helpful
1
Replies

SF300 - Problem with Port Security - Possible to Disable?

jeliasoncisco
Level 5
Level 5

‎08-03-2012 08:45 PM - edited ‎03-07-2019 08:09 AM

Hello. I have several SF300 switches deployed (SF300-08, SF300-24P). They are connected to IP Telephones (NEC) which communicate with the switch for auto voice VLAN on LLDP. The problem I am experiencing is that periodically the IP telephones are rebooted by the telephone vendor and when they do the switch puts that port into "Locked" port security mode and discards all traffic to the port. The IP telephones of course do not work. In other switch models, I have seen the ability to enable / disable port security switch wide or on a port by port basis. This model does not appear to have this feature. Any ideas on how to disable or why the phones would cause the switch ports to "lock"? There is usually one PC attached to each phone. Thanks.

Labels:
0 Helpful
1 Reply 1

Tom Watts
VIP Alumni
VIP Alumni

‎08-03-2012 08:48 PM

Jelia,

The port security feature is dictated by the cdp and lldp advertisements by the phone through the smart port roles. Because of your LLDP advertisements, the smart port role will go to ip phone + desktop. However, this will allocate 2 IP address for the configured port. This begs the question, why would the phone rebooting lock the port?

Is your phone reporting more than 2 MAC address?

If you like, you may disable the smart port and port security however this will result in manual configuration of your ports with data vlan untag, voice vlan tag and also QoS issues.

-Tom

-Tom Please mark answered for helpful posts http://blogs.cisco.com/smallbusiness/
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card