AANTS: Why Does EdgeConf MAC-Address Locking Sometimes Fail?
MAC address locking will fail if the user attempts to lock a device port to a MAC address which is already locked somewhere else on the device. This document describes the problem and solutions.
What Goes Wrong?Attempting to lock an edge port using the EdgeConf MAC address locking facility will (under certain conditions) fail, resulting in the port becoming locked into an "intermediate state" where the port cannot be locked to any MAC address, nor unlocked.
Why Does This Happen?This will happen if you are attempting to lock a port to a MAC address which is already locked on another port somewhere on the same device. In this case, most of the locking code is applied to the port, but the last command which does the actual MAC locking fails because an individual MAC address can only be locked to one port on a device. This is a Cisco IOS issue, and as such is not within the control of the AANTS team.