Support for CISCO interface err-disabled status


CISCO devices have a mechanism to automatically shut down a port when there’s a policy violation (Port Security Violation, BPDU guard, etc.)

In LibeNMS these err-disabled ports appear as “OK”, because no error on the interface-error counters are detected (which is true).

However I’d like to monitor my devices for such ports which are in “err-disabled” state (because these are exactly the ports you are interested in).

My suggestion is to create something like an "extended port"state that is “NULL” by default and "carries the “cErrDisableIfStatusCause” if this port appears in the “cErrDisableIfStatusTable” (-> of the device. My suggestion is that this will also cause that this port “carries the red flag”.

The way you can currently detect this kind of ports is not very reliable:
The CISCO device could throw SNMP traps, which is not supported by Libre (as traps are not reliable anyway).
The CISCO device does report such incidents via syslog (but syslog reliability, by default, suffers for the same reasons as SNMP traps) and syslog-monitoring is something that has to be set up first (and is not trivial …).

I believe that Libre is widely spread in environments which have CISCO devices. Such a feature, I believe, would be highly appreciated… what do you think?

Thank you!

Best regards,


+1 this would be useful to have, nice to have for Arista and other platforms too.

+1 this would be useful to have indeed

1 Like

This is something i was looking at too!
Could we lift this request? Its superb

1 Like

I, too, have been wanting to see this in LibreNMS. Would definitely be helpful for multiple violation modes as well. Restrict doesn’t shutdown a port (or give an interface status of err-disabled) but sends traps. According to LibreNMS docs, the only traps recorded are port up/down traps, so not even restrict modes are caught be LMNS. My org heavily utilizes Port security, so it would be handy to have an immediate notification.

+1 me too ,

+1 from us too :slight_smile:

Should be possible as I did precisely the same for CiscoSB :slightly_smiling_face:

For the devices I have tested against CISCO-ERR-DISABLE-MIB doesn’t seem viable, perhaps we could use cpsIfPortSecurityStatus instead?

+1 from here

+1 from me.

+1 from me

As far as I know, Libre now only classified ports as up/up, up/down and admindown in the port status bar.
I vote for an err-disable type of port status should be here too.


+1 from me.

+1 from me.

Love the idea!

+1 from me

+1 from me

+1 , I had this problem two days ago ( Cisco error disable ). If LibreNMS could of detected this port state , it would of saved me 8 hours to track down.

+1 we had a similar issue yesterday, but tom can you tell me how you traced the problem.

On the Cisco, show interface - that is how I found the problem when I was in the Cisco.