![]() ![]() You can also change this default of 300 seconds if you issue this command: If any one of the errdisable recovery conditions is enabled, the ports with this condition are reenabled after 300 seconds. When a port security violation is detected, the switch automatically places the port in the “err-disabled” shutdown state. Note: There is a similar command: “errdisable recovery cause security-violation” but it recovers a port from 802.1x violation disable state. The “errdisable recovery cause psecure-violation” command brings a secure port out of error-disabled state. Switch(config-if)# switchport mode dynamic desirableĬommand rejected: FastEthernet0/1 is a dynamic port. For example we will see an error when try it: Switch(config)# interface fastethernet 0/1 ![]() We cannot configure port security on a dynamic interface. Switch(config-if)# switchport port-securityįor more information about configuring port-security on trunk port please visit this link: An example of configuring port security on a static trunk port is shown below: Switch(config)# interface fastethernet 0/1 Port security can be enabled on both access and static trunk ports. The “sticky” keyword in switchport port-security mac-address sticky command converts all the dynamic secure MAC addresses, including those that were dynamically learned before sticky learning was enabled, to sticky secure MAC addresses and adds to the running configuration. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
February 2023
Categories |