Cisco Catalyst 2950 Command Reference Manual page 321
Desktop switch
Hide thumbs
Also See for Catalyst 2950:
- Configuration manual (710 pages) ,
- Command reference manual (686 pages) ,
- Software configuration manual (674 pages)
Table of Contents
Advertisement
Chapter 2 Cisco IOS Commands
Sticky learning is disabled.
The default violation mode is shutdown.
Command Modes
Interface configuration
Command History
Release
12.1(6)EA2
12.1(11)EA1
Usage Guidelines
After you set the maximum number of secure MAC addresses allowed on a port, you can add secure
addresses to the address table by manually configuring all of them, by allowing the port to dynamically
configure all of them, or by configuring a number of MAC addresses and allowing the rest to be
dynamically configured.
You can delete dynamic secure MAC addresses from the address table by entering the clear
port-security dynamic privileged EXEC command.
You can enable sticky learning on an interface by using the switchport port-security mac-address
sticky interface configuration command. When you enter this command, the interface converts all the
dynamic secure MAC addresses, including those that were dynamically learned before sticky learning
was enabled, to sticky secure MAC addresses. It adds all the sticky secure MAC addresses to the running
configuration.
If you disable sticky learning by using the no switchport port-security mac-address sticky interface
configuration command, or the running configuration is removed, the sticky secure MAC addresses
remain part of the running configuration but are removed from the address table. The addresses that were
removed can be dynamically reconfigured and added to the address table as dynamic addresses.
You can configure sticky secure MAC addresses by using the switchport port-security mac-address
sticky mac-address interface configuration command. These addresses are added to the running
configuration. If port security is disabled, the sticky secure MAC addresses remain in the running
configuration.
If you disable sticky learning, when you enter the switchport port-security mac-address sticky
mac-address interface configuration command, an error message appears, and the sticky secure MAC
address is not added to the running configuration.
You can delete sticky secure MAC addresses from the address table by disabling sticky learning, which
converts the sticky secure MAC addresses to dynamic secure addresses. After disabling sticky learning,
delete the dynamic secure addresses.
If you save the sticky secure MAC addresses in the configuration file, when the switch restarts or the
interface shuts down, the interface does not need to relearn these addresses. If you do not save the sticky
secure addresses, they are lost.
If sticky learning is not enabled, when the switch restarts or the port shuts down, all the addresses that
Note
were dynamically learned are removed.
78-11381-05
Modification
This command was first introduced. It replaced the port security and
mac-address-table secure commands.
The mac-address sticky [mac-address] option was added.
Catalyst 2950 Desktop Switch Command Reference
switchport port-security
2-297
Hide quick links:
Advertisement
Table of Contents
