Re: switchport port-security LOGGING

From: Balaji Siva (bsivasub@gmail.com)
Date: Wed Feb 02 2005 - 03:36:20 GMT-3

• Next message: Radu Pavaloiu: "BGP IPv6"
• Previous message: De Witt, Duane: "RE: RE: Slightly OT: Any truth in this?"
• Maybe in reply to: Balaji Siva: "Re: switchport port-security LOGGING"
• Next in thread: Ed Lui: "Re: switchport port-security LOGGING"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

There is no default, it is command is not complete as shown. Violation
has to be specified.

B(config-if)#switchport port-security violation ?
  restrict Security violation restrict mode
  shutdown Security violation shutdown mode

B(config-if)#switchport port-security violation
% Incomplete command.

On Tue, 1 Feb 2005 21:36:05 -0800, Ed Lui <edwlui@gmail.com> wrote:
> Have the log send to the server is better then just buffer. Also, you
> have to tell the switch what to do when violation happens:
>
> switchport port-security violation {protect | restrict | shutdown}
>
> If you don't tell the switch what to do when violation happens, it may
> default to.........
> I never tried it.
>
> HTH
>
> --
> Edward
> (A+, Net+, MCP, MCP+I, MCSE, CCNA, CCNP)
>
> On Tue, 1 Feb 2005 13:35:09 -0800 (PST), null void
> <nullv0idmain@yahoo.com> wrote:
> > I understand the concept of sticky keyword when using switchport port-security... It permits you to learn mac addresses on that given broadcast domain / vlan automagically and puts them to your running-config ... So if you did a wri mem and the router reloaded those same mac addresses would be there after the reload .. Is this accurate ??? Then there is what to do if say your maximum allowed mac address configuration is execeded , do you know if one of these methods would log to buffer so that if you reloaded the information pertaning to if any violations occured would be in that log... Say I had the following:
> >
> > int f0/12
> > switchport mode access
> > switchport port-security
> > switchport port-security maximum 4
> > switchport port-security mac-address sticky
> > switchport port-security violation
> >
> > Say this is applied to int fast0/12 of both R1 and R2's lan interfaces and they are running hsrp , with sticky will it 1 permit the hsrp well known mac and count this as 1 of the mac addresses so now I have used 3 of my mac addressess 1 for hsrp active well known mac address and 1 each for R1 and R2's lan ethernet interfaces .... So now if I write mem then reload and say a violation occured before I reloaded would I see the violation in local buffer logging if enabled and my previously learned mac addresses are still in use ??
> >
> > _______________________________________________________________________
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html

• Next message: Radu Pavaloiu: "BGP IPv6"
• Previous message: De Witt, Duane: "RE: RE: Slightly OT: Any truth in this?"
• Maybe in reply to: Balaji Siva: "Re: switchport port-security LOGGING"
• Next in thread: Ed Lui: "Re: switchport port-security LOGGING"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Mar 03 2005 - 08:51:16 GMT-3