I have port security enabled on fa0/11 to accept 3 devices. The show port-security command shows 3, show mac address-table interface fa0/11 shows 3 but show interface fa0/11 only show 2. 9c57.x.x.x is an IP phone, 3464.x.x.x is a desktop and 0800.x.x.x is a virtual machine that was added after increasing the limit from 2 to 3 to allow the VM to connect. Looking for reason I don’t the 0800.x.x.x int the running config. I assume it would also be a static entry since it was learned by port-security as Dynamic secure MAC addresses. Can you explain the Total addresses in System (excluding one mac per port). Thanks.
+++++++++++++++++++++++++++++++++++++++++++++++++++++
SW3#sh port-security
Secure Port MaxSecureAddr CurrentAddr SecurityViolation Security Action
(Count) (Count) (Count)
---------------------------------------------------------------------------
Fa0/11 3 3 0 Shutdown
Fa0/18 1 1 0 Shutdown
Fa0/19 1 1 0 Shutdown
---------------------------------------------------------------------------
Total Addresses in System (excluding one mac per port) : 2
Max Addresses limit in System (excluding one mac per port) : 6144
SW3#
+++++++++++++++++++++++++++++++++++++++++++++++++++++
SW3#sh run int fa0/11
Building configuration...
Current configuration : 274 bytes
!
interface FastEthernet0/11
switchport mode access
switchport nonegotiate
switchport port-security maximum 3
switchport port-security
switchport port-security mac-address 3464.a918.d8d0 vlan access
switchport port-security mac-address 9c57.ad3e.f384 vlan access
end
+++++++++++++++++++++++++++++++++++++++++++++++++++++
SW3#sh mac address-table interface fa0/11
Mac Address Table
-------------------------------------------
Vlan Mac Address Type Ports
---- ----------- -------- -----
1 0800.27bd.9085 STATIC Fa0/11
1 3464.a918.d8d0 STATIC Fa0/11
1 9c57.ad3e.f384 STATIC Fa0/11