From: Bill.McKenzie@bisys.com
Date: Tue Jun 13 2006 - 16:37:21 ART
"Exceeding Client Expectations"
Bill
McKenzie/Columbus
/BISYS To
"Fred Damstra"
06/13/2006 03:35 <fred.damstra@gmail.com>
PM cc
Subject
Re: Disabling Port-Security doesn't
appear to work on 3750 [7:110958]
(Document link: Bill McKenzie)
I have no port-security enabled on my switch , but when doing
show port-security it will still show output but there is no interface
listed in the output, so I'm thinking either the clear arp or shutdown
worked
and this is just what the router does.
"Exceeding Client Expectations"
"Fred Damstra"
<fred.damstra@gma
il.com> To
Sent by: cisco@groupstudy.com
nobody@groupstudy cc
.com
Subject
Re: Disabling Port-Security doesn't
06/13/2006 03:22 appear to work on 3750 [7:110958]
PM
Please respond to
"Fred Damstra"
<fred.damstra@gma
il.com>
Neither issuing a 'clear arp' nor doing a 'shutdown'/'no shut' worked
to remove it from the output of show port-security.
However, the output of 'show port-security int fa1/0/11' shows it as
disabled, and 'show port-security address' doesn't list any learned
mac's on that port.
I'm satisfied that it is a display bug, though it's an unfortunate one.
Fred
On 6/13/06, Bill.McKenzie@bisys.com wrote:
> Try a "clear arp"
>
>
> Bill McKenzie
> Network Support
> BISYS Fund Services
> Work: 614.428.3293
> Cell: 614.425.2370
>
> "Exceeding Client Expectations"
>
>
>
> "Fred Damstra"
>
il.com> To
> Sent by: cisco@groupstudy.com
> nobody@groupstudy
cc
> .com
>
Subject
> Re: Disabling Port-Security
doesn't
> 06/13/2006 02:52 appear to work on 3750 [7:110953]
> PM
>
>
> Please respond to
> "Fred Damstra"
> il.com>
>
>
>
>
>
>
> No change. 'show port-security' still lists the port.
>
> I tried both 'default interface fa1/0/11' which cleared out all
> configuration from the port, and also tried 'default switchport
> port-security' from config-if, which had no effect on the running
> config.
>
> Fred
>
> On 6/13/06, LeBron, Michael G. wrote:
> > Try using the "default" command
> >
> > I think it is "default interface fa1/0/11"
> >
> > -----Original Message-----
> > From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
> > Fred Damstra
> > Sent: Tuesday, June 13, 2006 2:30 PM
> > To: cisco@groupstudy.com
> > Subject: Disabling Port-Security doesn't appear to work on 3750
> > [7:110951]
> >
> > I have a Cisco 3750 which doesn't seem to want to let go of port
> > security on it's ports. I initially configured it with:
> >
> > lanstack01(config-if)# switchport port-security lanstack01(config-if)#
> > switchport port-security maximum 10 lanstack01(config-if)# switchport
> > port-security violation shutdown lanstack01(config-if)# switchport
> > port-security mac-address sticky
> >
> > After I realized it was the wrong port, I did the reverse:
> >
> > lanstack01(config)#int fa1/0/11
> > lanstack01(config-if)#no switchport port-security mac-address sticky
> > lanstack01(config-if)#no switchport port-security violation shutdown
> > lanstack01(config-if)#no switchport port-security maximum
> > lanstack01(config-if)#no switchport port-security
> > lanstack01(config-if)#end
> >
> > Indeed, 'show run int fa1/0/11' look right:
> >
> > lanstack01#sh run int fa1/0/11
> > Building configuration...
> >
> > Current configuration : 193 bytes
> > !
> > interface FastEthernet1/0/11
> > switchport mode access
> > spanning-tree portfast
> > spanning-tree bpduguard enable
> > end
> >
> > But 'show port-security' still shows it enabled:
> >
> > lanstack01#sh port-security
> > Secure Port MaxSecureAddr CurrentAddr SecurityViolation Security
> > Action
> > (Count) (Count) (Count)
> >
------------------------------------------------------------------------
> > ---
> > Fa1/0/11 1 0 0
> > Shutdown
> >
------------------------------------------------------------------------
> > ---
> >
> > Are these the wrong steps to disable port-security? Is this an IOS bug
> > (running 12.2(20)SE4)?
> >
> > Fred
> > ************** N O T I C E **************
> > The information contained in this transmission is intended for the
> exclusive
> > use of the addressee(s) and may contain information that is privileged,
> > confidential, and/or protected from disclosure. If you are not the
> intended
> > recipient, do not disseminate, distribute or copy this communication.
If
> > you have received this transmission in error, please immediately reply
to
> > the sender and then delete it. Thank you for your compliance.
> ============================================
> STATEMENT OF CONFIDENTIALITY
>
> The information contained in this electronic message and any attachments
to
> this message are intended for the exclusive use of the addressee(s) and
may
> contain confidential or privileged information. No representation is made
> on its accuracy or completeness of the information contained in this
> electronic message. Certain assumptions may have been made in the
> preparation of this material as of this date, and are subject to change
> without notice. If you are not the intended recipient, you are hereby
> notified that any dissemination, distribution or copying of this e-mail
and
> any attachment(s) is strictly prohibited.
>
> Please reply to the sender and destroy all copies of this message and any
> attachments from your system.
============================================
STATEMENT OF CONFIDENTIALITY
The information contained in this electronic message and any attachments to
this message are intended for the exclusive use of the addressee(s) and may
contain confidential or privileged information. No representation is made
on its accuracy or completeness of the information contained in this
electronic message. Certain assumptions may have been made in the
preparation of this material as of this date, and are subject to change
without notice. If you are not the intended recipient, you are hereby
notified that any dissemination, distribution or copying of this e-mail and
any attachment(s) is strictly prohibited.
Please reply to the sender and destroy all copies of this message and any
attachments from your system.
============================================
STATEMENT OF CONFIDENTIALITY
The information contained in this electronic message and any attachments to
this message are intended for the exclusive use of the addressee(s) and may
contain confidential or privileged information. No representation is made
on its accuracy or completeness of the information contained in this
electronic message. Certain assumptions may have been made in the
preparation of this material as of this date, and are subject to change
without notice. If you are not the intended recipient, you are hereby
notified that any dissemination, distribution or copying of this e-mail and
any attachment(s) is strictly prohibited.
Please reply to the sender and destroy all copies of this message and any
attachments from your system.
This archive was generated by hypermail 2.1.4 : Sat Jul 01 2006 - 07:57:32 ART