From: Ed Lui (edwlui@gmail.com)
Date: Tue Mar 15 2005 - 13:34:38 GMT-3
DHCP is an option, so as static ip. What if the port serves more than
2 hosts out of 10 hosts but the particular one has to be allowed.
-- Edward (A+, Net+, MCP, MCP+I, MCSE, CCNA, CCNP)On Tue, 15 Mar 2005 11:04:28 -0500, Sundar Palaniappan <sundarp@gmail.com> wrote: > Found the following example on CCO. > > This example shows how to configure a static secure MAC address on a > port and enable sticky learning: > > Switch# configure terminal > > Enter configuration commands, one per line. End with CNTL/Z. > > Switch(config)# interface fastethernet0/2 > > Switch(config-if)# switchport mode access > > Switch(config-if)# switchport port-security > > Switch(config-if)# switchport port-security mac-address 0000.02000.0004 > > Switch(config-if)# switchport port-security mac-address sticky > > Am a little confused as to why would you need "port-security sticky" > and "port security mac-address" configured under the same interface. > > My understanding of 'sticky' learning is, switch learns the > mac-address dynamically and stores in the address in mac-address-table > and running-config. If saved to config, the switch doesn't need to > relearn the address dynamically when the switch restarts next time. > > By default, maximum mac-address allowed is 1. If that's the case, then > the "switchport port-security sticky" should be good enough. Then what > is the need for a redundant static mac-address in there. > > Hope someone can shed some light on this topic. > > TIA, > Sundar Palaniappan > > _______________________________________________________________________ > Subscription information may be found at: > http://www.groupstudy.com/list/CCIELab.html
This archive was generated by hypermail 2.1.4 : Sun Apr 03 2005 - 17:56:45 GMT-3