From: John Matijevic (matijevi@bellsouth.net)
Date: Mon Jun 16 2003 - 15:14:49 GMT-3
Hello,
I hope this information below helps you understand as it did for me.
Sincerely,
Matijevic
A secure port can have from 1 to 132 associated secure addresses. After you
have set the maximumnumber of secure MAC addresses on a port, the secure
addresses are included in an address table in oneof these ways:.You can
configure all secure MAC addresses by using the switchport port-security
mac-addressmac-address interface configuration command..You can allow the
port to dynamically configure secure MAC addresses with the MAC addresses
ofconnected devices..You can configure a number of addresses and allow the
rest to be dynamically configured.Once the maximum number of secure MAC
addresses is configured, they are stored in an address table.Setting a
maximum number of addresses to one and configuring the MAC address of an
attached deviceensures that the device has the full bandwidth of the
port.The switch supports these types of secure MAC addresses:.Static secure
MAC addresses-These are manually configured by using the
switchportport-security mac-address mac-address interface configuration
command, stored in the addresstable, and added to the switch running
configuration..Dynamic secure MAC addresses-These are dynamically
configured, stored only in the addresstable, and removed when the switch
restarts..Sticky secure MAC addresses-These are dynamically configured,
stored in the address table, andadded to the running configuration. If these
addresses are saved in the configuration file, when theswitch restarts, the
interface does not need to dynamically reconfigure them.You can configure an
interface to convert the dynamic MAC addresses to sticky secure MAC
addressesand to add them to the running configuration by enabling sticky
learning. To enable sticky learning, enterthe switchport port-security
mac-address sticky interface configuration command. When you enterthis
command, the interface converts all the dynamic secure MAC addresses,
including those that weredynamically learned before sticky learning was
enabled, to sticky secure MAC addresses. The interfaceadds all the sticky
secure MAC addresses to the running configuration.The sticky secure MAC
addresses do not automatically become part of the configuration file, which
isthe startup configuration used each time the switch restarts. If you save
the sticky secure MAC addressesin the configuration file, when the switch
restarts, the interface does not need to relearn these addresses.If you do
not save the sticky secure addresses, they are lost
----- Original Message -----
From: "Emad " <emad@zakq8.com>
To: <ccielab@groupstudy.com>
Sent: Monday, June 16, 2003 1:26 PM
Subject: CAT3550: switchport port-security
> Folks,
> I read the DOC CD about this command switchport port-security sticky
> but I didn't catch the idea behind this command exactly?
> Please can anyone explain it more clear
>
> thanx
>
>
> _______________________________________________________________________
> You are subscribed to the GroupStudy.com CCIE R&S Discussion Group.
>
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
This archive was generated by hypermail 2.1.4 : Fri Jul 04 2003 - 11:10:59 GMT-3