port security

Silver-0-surfer

Well-Known Member
Joined
Jan 5, 2008
Messages
317
Hi

Im studying for my ccent (and then ccna) and I just have a question for some of you guys who actually work with cisco.

If I setup port security on a port and do

switchport mode access

that makes the port and access port vs a trunk port right, so if thats the case, whats the point of doing something like

switchport port-security maximum 1

I mean if its an access port how would more than 1 device even connect to it? I feel like I must be missing something?
 

syntax

Executive Member
Joined
May 16, 2008
Messages
8,656
What if i connect another switch to that access port? Not a trunk to carry Vlan's, just another switch....with that config you can obviously see u will run into issues...

You would only configure port security of maximum 1 on an end point connection port.
 

dabouncer

Expert Member
Joined
Jan 2, 2006
Messages
1,405
Switchport security works with mac address, maximum of 1 mac address change and then the port becomes inactive. You can also define if a port becomes restricted or shut when a violation occurs.
 

ambo

Expert Member
Joined
Jun 9, 2005
Messages
2,685
switchport port-security maximum 1

I mean if its an access port how would more than 1 device even connect to it? I feel like I must be missing something?
If you have virtual machines running on a server then each virtual machine would be seen by the network as a new device. (If of course you set the VM up with bridge NICs)

Typically though - this feature is used to prevent the use of a hub or (even worse) a wireless AP on a switch port that is designated for one device.
 
Top