Skip to main content

Switchport port-security sticky

More
14 years 10 months ago #33657 by Nevins
Switchport port-security sticky was created by Nevins
How does sticky learning know when to stop? Do you just leave sticky on until you've gained an entry from each machine then turn it off?

interface FastEthernet0/2
switchport mode access
switchport port-security
switchport port-security mac-address sticky
switchport port-security mac-address 0200.2222.2222


Logically would only expect to see 1 mac address if the switch only connected to one pc but it's very possible that a switch connects to a hub which connects to more than one mac address.
Useful Threads
================================
www.firewall.cx/forum/2-basic-concepts/3...e-resource-page.html
More
14 years 10 months ago #33666 by FlipRich
Replied by FlipRich on topic Re: Switchport port-security sticky
By default, the maximum trusted MAC's on a port is one. You can adjust the maximum number of trusted MAC's per port with this command:

Switch(config-if)# switchport port-security maximum x

If you turn off sticky mac address filtering, you disable your port security.


Is this what you were asking about?
Rich
Network Engineer /CCNP, CCNA-S
Tallahassee, FL
More
14 years 10 months ago #33667 by Nevins
Replied by Nevins on topic Re: Switchport port-security sticky
Yep it makes sense too.
Useful Threads
================================
www.firewall.cx/forum/2-basic-concepts/3...e-resource-page.html
Time to create page: 0.115 seconds