port-security and IP Phones

Guest · Posted: Fri Jul 13, 2007 9:02 pm Post subject: port-security and IP Phones

I've seen a problem with the port-security feature on switches when
you connect through an IP phone.

The problem arises when a data device, connected through an IP phone,
is moved from one port to another on the same switch. When the data
device is attached to the new port it has no connectivity.

The cause of the problem is the fact that the phone keeps the switch
port up even though you may plug out a device from the data port on
the phone. This means that the switch port-security entries are not
cleared. The switch sees that the mac address of the data device is
attached to the old port so it does not open on the new port until
it's cleared from the old one.

To clear the port-security entries you can disconnect the IP phone,
causing the port to drop or you can run the following command

clear port-security dynamic address A.B.C (where A.B.C is the mac
address of the data device)

This results in problems with laptop mobility on an office floor.

I've seen this problem on a Cisco 4506 running cat4500-ipbasek9-mz.
122-37.SG.bin

Has anybody else seen this and does anybody know of a solution?

As always your help is appreciated.
FWS

Peter · Guest

Greetings,

On Fri, 13 Jul 2007 16:02:44 UTC, firewallstarter@hotmail.com wrote: