Testing Switch Port Security

I have a practice lab in PT. I have a PC connected to the switch on fa0/12 with port security setting of max MAC address 1. The security violation count shows 0 now. What should I do to make a Violation?

Find more posts tagged with

SAVE $250 on Your CISCO Boot Camp — Use Code "EXAM26"

Exclusively for TechExams members for Infosec Boot Camps starting before April 30, 2026

View CISCO Boot Camps

Comments

steveyeung

connect a hub to the port fa0/12, and connect 2 pc to the hub

pamccabe

That or use the port-security mac-address sticky command to learn the mac. Now, move the computer and plug another one into that port.

Zartanasaurus

Install VMs on the PC.

TechGuru80

Or port-security mac-address ABCD.EFGH.IJKL ... obviously a fake mac address but then plugin the computer and poof security violation.

Magic Johnson

TechGuru80 wrote: »

Or port-security mac-address ABCD.EFGH.IJKL ... obviously a fake mac address but then plugin the computer and poof security violation.

Yeah that's what I did, just put the MAC of the client's NIC but change the last digit that will create a violation and protect/restrict/shutdown. If you are using packet tracer you'll have to 'no' each of your port-security settings as the 'default' command doesn't work (annoyingly). Or you could just reload the device if that's the only changes you've made to the config.