Cisco 4500M Command Reference Manual page 498
Command reference
Hide thumbs
Also See for 4500M:
- Software manual (608 pages) ,
- Hardware installation and maintenance manual (143 pages) ,
- Upgrade manual (24 pages)
Table of Contents
Advertisement
Chapter2
Cisco IOS Commands for the Catalyst 4500 Series Switches
switchport port-security
To allow limited time access to particular secure addresses, set the aging type as absolute . When the
aging time lapses, the secure addresses are deleted.
To allow continuous access to a limited number of secure addresses, set the aging type as inactivity. This
removes the secure address when it become s inactive, and other addresses can become secure.
To allow unlimited access to a secure address, configure it as a secure address, and disable aging for the
statically configured secure address by using the no switchport port-security aging static interface
configuration command.
If the sticky command is executed without a MAC address specified, all MAC addresses learned on that
port will be made sticky. You can also specify a specific MAC address to be a sticky address by entering
the sticky keyword next to it.
You can configure the sticky feature even when port security is not enabled on the interface. The feature
becomes operational when you enable port security on the interface.
You can use the no form of the sticky command only if the sticky feature is already enabled on the
interface.
Examples
This example shows how to enable port security on Fast Ethernet port 12 and to set the maximum number
of secure addresses to 5. The violation mode is the default, and no secure MAC addresses are configured.
Switch(config)# interface fastethernet 2/ 12
Switch(config-if)# switchport mode access
Switch(config-if)# switchport port-security
Switch(config-if)# s witchport port-security maximum 5
Switch(config-if)#
You can verify the settings for all secure ports or the specified port by using the show port-security
privileged EXEC command.
This example shows how to make all MAC addresses learned on Fast Ethernet port 12 sticky:
Switch(config)# interface fastethernet 2/12
SSwitch(config-if)# switchport port-security mac-address sticky
Switch(config-if)
This example shows how to make MAC address 1000.2000.3000 sticky on Fast Ethernet port 12:
Switch(config)# interface fastethernet 2/12
SSwitch(config-if)# switchport port-security mac-address sticky 1000.2000.3000
Switch(config-if)
This example shows how to disable the sticky feature on Fast Ethernet port 12:
Switch(config)# interface fastethernet 2/12
Switch(config-if)# no switchport port-security mac-address sticky
Switch(config-if)
Note
This command makes all sticky addresses on this interface normal learned entries. It does not delete the
entries from the secure MAC address table.
This example shows how to remove all sticky and static addresses configured on the interface:
Switch(config)# interface fastethernet 2/12
Switch(config-if)# no switchport port-security mac-address
Switch(config-if)
Catalyst4500 Series SwitchCiscoIOS Command Reference—Release 12.2(18)EW
2-466
78-16201-01
Advertisement
Table of Contents
