From d5b453ad5568c14ce99ec3afb3ca55e51eedd25a Mon Sep 17 00:00:00 2001
From: Timotej Lazar <timotej.lazar@fri.uni-lj.si>
Date: Mon, 12 Jan 2026 15:29:47 +0100
Subject: [PATCH] access: drop port-security stuff

At least D-Link switches are buggy in a way that prevents plugging a
MAC address into a different port before port-security timeout. Also
it makes provisioning take forever for some reason.

So just drop it and try to figure out proper STP before the next
network collapse.
---
 roles/access/templates/config-d-link.j2 | 13 -------------
 1 file changed, 13 deletions(-)

diff --git a/roles/access/templates/config-d-link.j2 b/roles/access/templates/config-d-link.j2
index 36df00c..d9c8fc4 100644
--- a/roles/access/templates/config-d-link.j2
+++ b/roles/access/templates/config-d-link.j2
@@ -30,19 +30,6 @@ interface {{ iface.name }}
 interface {{ iface.name }}
 {# common setup for user-facing interfaces #}
 {% if iface.type.value != 'lag' and not iface.mgmt_only %}
-{% if iface.mode and iface.mode.value == 'access' %}
- switchport port-security
- switchport port-security maximum 64
- switchport port-security violation shutdown
- switchport port-security aging time 5
- switchport port-security aging type inactivity
-{% else %}
- no switchport port-security
- no switchport port-security maximum
- no switchport port-security violation
- no switchport port-security aging time
- no switchport port-security aging type
-{% endif %}
 {% if iface.enabled %} no shutdown{% else %} shutdown{% endif %}
 {% endif %}