port security

[Silver-0-surfer]

Hi

Im studying for my ccent (and then ccna) and I just have a question for some of you guys who actually work with cisco.

If I setup port security on a port and do

switchport mode access

that makes the port and access port vs a trunk port right, so if thats the case, whats the point of doing something like

switchport port-security maximum 1

I mean if its an access port how would more than 1 device even connect to it? I feel like I must be missing something?

 

[syntax]

What if i connect another switch to that access port? Not a trunk to carry Vlan's, just another switch....with that config you can obviously see u will run into issues...

You would only configure port security of maximum 1 on an end point connection port.

 

[dabouncer]

Switchport security works with mac address, maximum of 1 mac address change and then the port becomes inactive. You can also define if a port becomes restricted or shut when a violation occurs.

 

[ambo]

switchport port-security maximum 1

I mean if its an access port how would more than 1 device even connect to it? I feel like I must be missing something?

If you have virtual machines running on a server then each virtual machine would be seen by the network as a new device. (If of course you set the VM up with bridge NICs)

Typically though - this feature is used to prevent the use of a hub or (even worse) a wireless AP on a switch port that is designated for one device.

 

[Silver-0-surfer]

I was leaning towards wireless ap.

Thanks for help guys,just thought it was a bit weird

 

[syntax]

I was leaning towards wireless ap.

Thanks for help guys,just thought it was a bit weird

would have thought connecting a second switch to it would have been the more obvious one... /shrugs/