RE: Port-security

From: ccie2be (ccie2be@nyc.rr.com)
Date: Sun Apr 17 2005 - 09:52:34 GMT-3

• Next message: Anthony Liu: "RE: Access-list question - Allowing even and odd numbers in 3rd"
• Previous message: JP: "RE: Access-list question - Allowing even and odd numbers in 3rd"
• Maybe in reply to: Lanny Ballard: "Port-security"
• Next in thread: Mihai Petcu: "Re: Port-security"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Brain,

If the task says config "Port Security" when talking about a 3550, does that
mean the solution includes using commands such as switchport port-security
or not necessarily so?

TIA, Tim

-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Brian Dennis
Sent: Saturday, April 16, 2005 6:04 PM
To: Lanny Ballard; ccielab@groupstudy.com
Subject: RE: Port-security

Lanny,
        What part of your configuration is preventing the IP address
from being something other than 200.100.100.13 on port Fa0/13? Don't
reply with "Oh, it's the static arp command", as that's not the solution
;-)

Brian Dennis, CCIE #2210 (R&S/ISP-Dial/Security)

bdennis@internetworkexpert.com
Internetwork Expert, Inc.
http://www.InternetworkExpert.com
Toll Free: 877-224-8987
Direct: 775-745-6404 (Outside the US and Canada)

-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Lanny Ballard
Sent: Saturday, April 16, 2005 2:56 PM
To: ccielab@groupstudy.com
Subject: Port-security

Hey guys,
I'm doing Lab 20 in the ccbootcamp lab workbook, and I have a question
I have the statement "Configure Port Security on Cat1 so that R13 using
the
IP address of 200.100.100.13 and the Mac Address of 0001.1313.1313 is
the
only device allowed on the switchport

so I have on the catalyst:

int fa0/13
switchport mode access
swtchiport access vlan 100
switchport port-security
switchport port-security mac-addres 0001.1313.1313
!
arp 200.100.100.13 0001.1313.1313 fa0/13

and on R13

int fa0/0
ip add 200.100.100.13
mac-address 0001.1313.1313

Ok, so here's the deal. When I change the mac-address, the port shuts
down
like it should; however, when I change the ip address on the router, the

port does not shut down. Can someone tell me what I'm missing here?

The sad part is I even checked the answers, and it looks like I have it
right, but I can't figure out what's missing.

TIA
Lanny

• Next message: Anthony Liu: "RE: Access-list question - Allowing even and odd numbers in 3rd"
• Previous message: JP: "RE: Access-list question - Allowing even and odd numbers in 3rd"
• Maybe in reply to: Lanny Ballard: "Port-security"
• Next in thread: Mihai Petcu: "Re: Port-security"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Tue May 03 2005 - 07:54:59 GMT-3