Table of Contents
Advertisement
Sticky mode configuration converts all the existing dynamically learned MAC
addresses on an interface to sticky. This means that they will not age out and
will appear in the running-config. In addition, new addresses learned on the
interface will also become sticky. Note that sticky is not the same as static –
the difference is that all sticky addresses for an interface are removed from the
running-config when the interface is taken out of sticky mode. Static
addresses must be removed from the running-config individually.
Sticky MAC addresses appear in the running-config in the following form:
switchport port-security mac-address sticky 0011.2233.4455 vlan 33
Statically locked MAC addresses appear in the running-config in the
following form:
switchport port-security mac-address 0011.2233.4455 vlan 33
Command History
Updated in 6.3.0.1 firmware.
Example
Enable port security/MAC locking globally and on an interface.
console(config)#switchport port-security
console(config)#interface gi1/0/3
console(config-if-gi1/0/3)#switchport port-security
Enable port security/MAC locking globally and on an interface, enable sticky
mode on the interface and convert all dynamic addresses on the interface to
sticky.
console(config)#switchport port-security
console(config)#interface gi1/0/3
console(config-if-gi1/0/3)#switchport port-security
console(config-if-gi1/0/3)#switchport port-security mac-address sticky
Add a statically locked MAC address to trunk port Gi1/0/3 and VLAN 33.
console(config)#vlan 33
console(config-vlan33)#interface gi1/0/3
console(config-if-Gi1/0/3)#switchport mode trunk
console(config-if-Gi1/0/3)#switchport port-security mac-address
0011.2233.4455 vlan 33
Add a sticky mode statically locked MAC address to trunk port Gi1/0/3 and
VLAN 33.
294
Layer 2 Switching Commands
Advertisement
Table of Contents
