From: Sundar Palaniappan (sundarp@gmail.com)
Date: Tue Mar 15 2005 - 13:04:28 GMT-3
Found the following example on CCO.
This example shows how to configure a static secure MAC address on a
port and enable sticky learning:
Switch# configure terminal
Enter configuration commands, one per line. End with CNTL/Z.
Switch(config)# interface fastethernet0/2
Switch(config-if)# switchport mode access
Switch(config-if)# switchport port-security
Switch(config-if)# switchport port-security mac-address 0000.02000.0004
Switch(config-if)# switchport port-security mac-address sticky
Am a little confused as to why would you need "port-security sticky"
and "port security mac-address" configured under the same interface.
My understanding of 'sticky' learning is, switch learns the
mac-address dynamically and stores in the address in mac-address-table
and running-config. If saved to config, the switch doesn't need to
relearn the address dynamically when the switch restarts next time.
By default, maximum mac-address allowed is 1. If that's the case, then
the "switchport port-security sticky" should be good enough. Then what
is the need for a redundant static mac-address in there.
Hope someone can shed some light on this topic.
TIA,
Sundar Palaniappan
This archive was generated by hypermail 2.1.4 : Sun Apr 03 2005 - 17:56:45 GMT-3