RE: port security, nonegotiate and violation

From: Andrew Larkins (andrew.larkins@BTGroup.co.za)
Date: Mon Jan 08 2007 - 10:22:31 ART

• Next message: haducbinh: "RE: DHCP Snooping option-82"
• Previous message: Geert Nijs: "RE: BGP Reg Exp"
• Maybe in reply to: Hash Aminu: "port security, nonegotiate and violation"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Port security by default will only allow 1 mac address per interface..
Use a show mac-address interface gi1/19 to see the output before
applying the command

-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Hash Aminu
Sent: 08 January 2007 14:07 PM
To: Cisco certification
Subject: port security, nonegotiate and violation

hello Guys

I am having problem with portsecurity with the following configuration.
but as soon as i removed the portsecurity everything comes back to
normal, else the port gets disabled. this is a catalyst 6513 . and these
ports are connected to different type of servers, IBM, SUN e.t.c

could someone verify my configuration or came accross this issue befoer,
may be a bug or something.

Thanks in advance

hash

fine the config below

6513#sh run int gi 1/19
Building configuration...

Current configuration : 228 bytes
!
interface GigabitEthernet1/19
 no ip address
 switchport
 switchport mode access
 switchport nonegotiate
 switchport port-security
 spanning-tree portfast
end

6513#sh run int gi 1/19
Building configuration...

Current configuration : 228 bytes
!
interface GigabitEthernet1/19
 description " DN PORTAL - cabinet I - NOC2 - Wessam Haggag 1300"
 no ip address
 switchport
 switchport mode access
 switchport nonegotiate
 switchport port-security
 spanning-tree portfast
end

cat6513#sh interfaces gi 1/19 switchport
Name: Gi1/19
Switchport: Enabled
Administrative Mode: static access
Operational Mode: static access
Administrative Trunking Encapsulation: dot1q Operational Trunking
Encapsulation: native Negotiation of Trunking: Off Access Mode VLAN: 1
(default) Trunking Native Mode VLAN: 1 (default) Voice VLAN: none
Administrative private-vlan host-association: none Administrative
private-vlan mapping: none Administrative private-vlan trunk native
VLAN: none Administrative private-vlan trunk encapsulation: dot1q
Administrative private-vlan trunk normal VLANs: none Administrative
private-vlan trunk private VLANs: none Operational private-vlan: none
Trunking VLANs Enabled: ALL Pruning VLANs Enabled: 2-1001 Capture Mode
Disabled Capture VLANs Allowed: ALL

Voice VLAN: none (Inactive)
Appliance trust: none

• Next message: haducbinh: "RE: DHCP Snooping option-82"
• Previous message: Geert Nijs: "RE: BGP Reg Exp"
• Maybe in reply to: Hash Aminu: "port security, nonegotiate and violation"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Feb 08 2007 - 23:46:56 ART