6.1 Configure, verify, and troubleshoot port security

Please note this article is deprecated. I have re-written it here with an improved lab.

According the the exam topics the following need to be learned:
6.1 Configure, verify, and troubleshoot port security
6.1.a Static
6.1.b Dynamic
6.1.c Sticky
6.1.d Max MAC addresses
6.1.e Violation actions
6.1.f Err-disable recovery

6.1 lab

I begin with a simple lab to add more than one PC per switch port.
6.1 wiring

Here is an extract from the book summarizing the various port-security options:
port security types

Here is the config for the network:
6.1 swconfig

Here is the resultant mac-address table and security violations:
violations.png

As you can see the port e0/2 was configured with shutdown as the port-security violation option. As a result the port is shutdown:
6.1 violations6.1 port states

6.1.f: to recover an err.disabled port you need to go into interface configure mode in global configuration mode and “shutdown” and “no shutdown” the port.

Full lab here.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s