show port-security on 3560 switch ?

satishtech

why is there no show port-security on 3560 switch or
how do I access port-security details on layer 3 switch ?

Find more posts tagged with

Save $250 on 2025 certification boot camps from Infosec!

Book now with code EOY2025

Button

Comments

Mooseboost

Show port-security is a valid show command on a 3560 Switch. Are you using a physical switch or emulated? I booted up my switch just to confirm:

If you are using packet tracer it may not be a command that was emulated.

SW23560ShowPortSecurity.PNG

james43026

I agree with Mooseboost. I opened PT and confirmed that it does not have the ability to show port-security. Live equipment does though.

echo_time_cat

satishtech wrote: »

why is there no show port-security on 3560 switch or
how do I access port-security details on layer 3 switch ?

The 2950's in PT do appear to be setup to show port-sec interestingly enough.

On the 3560, it looks like the best way to see the details would be to do a "show run".

Results of "show interfaces" should include info where sec violations have occurred.

example: I had fa0/1 set to "mac-address sticky", 1 max allowed and to shutdown if there was a violation. Plugging in another device brought the interface down as soon as I requested an addy via DHCP. The output of"sh int fa0/1" included:

"FastEthernet0/1 is down, line protocol is down (err-disabled)"

satishtech

I am using packet tracer and this command does not show on a 3560 switch !!!
can be very dangerous.

volfkhat

ha!
welcome to the Joys of Emulation learning :]

My Favorite MISSING-PacketTracer command is:
show int status

I was scratching my head for 2 WHOLE days before some finally clued me in :]

satishtech

Is this correct ?

when I use enable secret 0 cisco (on PT)

sh ru = enable secret 5 $1$mERr$hx5rVt7rPNoS4wqbXKX7m0

and

when I use enable secret 5 cisco (on PT)

sh ru = enable secret 5 cisco

shouldn't it be the other way round ?