Notification

Icon
Error

Cisco Switch port security status - Cisco Switch port security status

Posted: Wednesday, October 27, 2021 7:10:25 AM(UTC)
Shahzad Ahmad

Shahzad Ahmad

Member Original PosterPosts: 2
0
Like
Dear All,

I have one query, I have Cisco switches in my network and I have applied port security at my switches, commands are mentioned below. I want to get the status of all the switch ports that have been configured or not for port security.

switchport port-security
switchport port-security violation restrict
switchport port-security mac-address sticky


Best Regards,

Shahzad
Hendrik.VE
#1Hendrik.VE Member Posts: 93  
posted: 10/27/2021 8:10:26 AM(UTC)
Hi Shahzad,

I was looking for the same recently. Unfortunately, I don't believe it's possible with Lansweeper to query this information, because the oid is variable (it contains the MAC addresses that were discovered on the port).

Fortunately, we also use SolarWinds, in which you can run an SNMP Walk on specific oid's. Below you find oid's we query:

Via SolarWinds (or Paessler SNMP Tester): perform a 'Walk' on oid 1.3.6.1.4.1.9.9.315

Most important metrics:

https://oidref.com/1.3.6.1.4.1.9.9.315.1.2.2.1.2
1.3.6.1.4.1.9.9.315.1.2.2.1.2.port.MACAddress.status
--> 1 = Static
2 = Dynamic


https://oidref.com/1.3.6.1.4.1.9.9.315.1.2.1.1.2
1.3.6.1.4.1.9.9.315.1.2.1.1.2.port.status
1 = Secureup
2 = SecureDown - port security is not operational.
3 = Shutdown due to portsec violation

https://oidref.com/1.3.6.1.4.1.9.9.315.1.2.1.1.3
1.3.6.1.4.1.9.9.315.1.2.1.1.3.Port.MaxAddress
The maximum number (N) of MAC addresses to be secured on the interface
Shahzad Ahmad
#2Shahzad Ahmad Member Original PosterPosts: 2  
posted: 10/27/2021 9:03:22 AM(UTC)
Originally Posted by: Hendrik.VE Go to Quoted Post
Hi Shahzad,

I was looking for the same recently. Unfortunately, I don't believe it's possible with Lansweeper to query this information, because the oid is variable (it contains the MAC addresses that were discovered on the port).

Fortunately, we also use SolarWinds, in which you can run an SNMP Walk on specific oid's. Below you find oid's we query:

Via SolarWinds (or Paessler SNMP Tester): perform a 'Walk' on oid 1.3.6.1.4.1.9.9.315

Most important metrics:

https://oidref.com/1.3.6.1.4.1.9.9.315.1.2.2.1.2
1.3.6.1.4.1.9.9.315.1.2.2.1.2.port.MACAddress.status
--> 1 = Static
2 = Dynamic


https://oidref.com/1.3.6.1.4.1.9.9.315.1.2.1.1.2
1.3.6.1.4.1.9.9.315.1.2.1.1.2.port.status
1 = Secureup
2 = SecureDown - port security is not operational.
3 = Shutdown due to portsec violation

https://oidref.com/1.3.6.1.4.1.9.9.315.1.2.1.1.3
1.3.6.1.4.1.9.9.315.1.2.1.1.3.Port.MaxAddress
The maximum number (N) of MAC addresses to be secured on the interface


Hi, Hendrik

Thanks for your kind information please.

I'll check and apply this information.

Regards,
Shahzad

Active Discussions

Lansweeper Linux Agent - login user
by  Dinusha Chandrasinghe   Go to last post Go to first unread
Last post: Today at 11:03:07 AM(UTC)
Lansweeper device with multiple NICs
by  mzipperer  
Go to last post Go to first unread
Last post: Yesterday at 7:42:57 PM(UTC)
Lansweeper Internal Note
by  mdavis2503   Go to last post Go to first unread
Last post: Yesterday at 6:00:07 PM(UTC)
Lansweeper Problem with deploy software
by  Max90  
Go to last post Go to first unread
Last post: Yesterday at 12:09:40 PM(UTC)
Lansweeper Can lsagent be protected from deletion
by  RKCar   Go to last post Go to first unread
Last post: 11/29/2021 8:56:09 PM(UTC)
Lansweeper HTTPS not secure
by  Larry Rhea  
Go to last post Go to first unread
Last post: 11/29/2021 7:50:59 PM(UTC)
Lansweeper Warning about Built-in Admin
by  Larry Rhea   Go to last post Go to first unread
Last post: 11/29/2021 7:45:45 PM(UTC)