From: Neirival de Sousa (neirival@odebrecht.com)
Date: Tue Feb 06 2007 - 07:48:25 ART
Hi Phuc,
Have you tried the default command as below ???
interface FastEthernet0/6
default switchport port-security 
Regards /// 
Neirival de Sousa 
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
nhatphuc
Sent: Tuesday, February 06, 2007 10:08 AM
To: Cisco certification
Subject: Port-security: can't set max secure mac of an interface to default
value
Hi Group
How can I set the port-security maximum secure mac of an interface to
default value?
This is what I do and unsuccessful:
SW2#sh run int f0/6
Building configuration...
Current configuration : 143 bytes
!
interface FastEthernet0/6
 switchport mode access
 switchport port-security maximum 2
 switchport port-security
 spanning-tree portfast
end
SW2(config)#int f0/6
SW2(config-if)#no switchport port-security maximum 2
Maximum is less than number of currently secured mac-addresses.
SW2#sh port-security address
          Secure Mac Address Table
------------------------------------------------------------------------
Vlan    Mac Address       Type                     Ports   Remaining Age
                                                              (mins)
----    -----------       ----                     -----   -------------
------------------------------------------------------------------------
Total Addresses in System (excluding one mac per port)     : 3
Max Addresses limit in System (excluding one mac per port) : 6272
SW2#show port-security
Secure Port  MaxSecureAddr  CurrentAddr  SecurityViolation  Security Action
                (Count)       (Count)          (Count)
---------------------------------------------------------------------------
      Fa0/4              1            0                  1         Shutdown
      Fa0/6              2            2                  1         Shutdown
---------------------------------------------------------------------------
Total Addresses in System (excluding one mac per port)     : 3
Max Addresses limit in System (excluding one mac per port) : 6272
SW2#clear port-security all
SW2#show port-security
Secure Port  MaxSecureAddr  CurrentAddr  SecurityViolation  Security Action
                (Count)       (Count)          (Count)
---------------------------------------------------------------------------
      Fa0/4              1            0                  1         Shutdown
      Fa0/6              2            2                  1         Shutdown
---------------------------------------------------------------------------
Total Addresses in System (excluding one mac per port)     : 3
Max Addresses limit in System (excluding one mac per port) : 6272
SW2(config)#int range f0/4,f0/6
SW2(config-if-range)#no switchport port-security max 2
Maximum is less than number of currently secured mac-addresses.
% Interface range command failed for FastEthernet0/6
SW2(config-if-range)#no switchport port-security
SW2(config-if-range)#no switchport port-security max 2
Maximum is less than number of currently secured mac-addresses.
% Interface range command failed for FastEthernet0/6
SW2(config-if-range)#shut
SW2(config-if-range)#no switchport port-security max 2
Maximum is less than number of currently secured mac-addresses.
% Interface range command failed for FastEthernet0/6
SW2(config-if-range)#
SW2(config-if)#int f0/6
SW2(config-if)#no switchport port-security maximum 2
Maximum is less than number of currently secured mac-addresses.
Thanks
Phuc
This archive was generated by hypermail 2.1.4 : Thu Mar 01 2007 - 07:38:46 ART