Cisco Community
English
Register
JOIN thousands of technologists and change-makers at Transform 2020, a one-of-a-kind virtual event! RESERVE YOUR SPOT NOW
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
158
Views
5
Helpful
2
Replies
Antonio Macia
Antonio Macia Beginner
Beginner
‎02-14-2020 04:03 AM
‎02-14-2020 04:03 AM

MST TCN BPDUs interaction

Hi,

Per the documentation, every time ACI receives a TCN BPDU, it flushes the endpoint database for the EPG associated with the VLAN where the TCN came from. This makes sense when the ACI fabric is dual connected with the legacy network through two different leafs (without VPC), to avoid traffic blackholing when one of the legacy paths fails and the traffic must go through the alternative leaf.

 

However, when there is a single VPC between two leafs and two legacy switches (also in VPC), there is no alternate paths and TCN BPDUs will flush the endpoints for nothing, causing traffic flapping in ACI. Should I configure the VPC port at the legacy switches side as "spanning-tree portfast trunk" to prevent BPDUs from reaching ACI to avoid EP flushing? Would this cause any risk? My set-up uses MST, but I assume this is not relevant in this case.

 

Thanks.

Labels:
Everyone's tags (2)
0 Helpful
Reply
1 ACCEPTED SOLUTION

Accepted Solutions
Highlighted
Remi-Astruc
Remi-Astruc Cisco Employee
Cisco Employee
‎02-14-2020 05:19 AM
‎02-14-2020 05:19 AM

Re: MST TCN BPDUs interaction

Hi @Antonio Macia ,

Yes, if you are sure there won't be any other Legacy connections, you can definitely do that.

No specific risk, but like on traditional switches with no-loop design, some prefer to keep spanning tree to prevent an unexpected loop caused by miscabling/misconfiguration.

Remi Astruc

View solution in original post

Reply
2 REPLIES 2
Highlighted
Remi-Astruc
Remi-Astruc Cisco Employee
Cisco Employee
‎02-14-2020 05:19 AM
‎02-14-2020 05:19 AM

Re: MST TCN BPDUs interaction

Hi @Antonio Macia ,

Yes, if you are sure there won't be any other Legacy connections, you can definitely do that.

No specific risk, but like on traditional switches with no-loop design, some prefer to keep spanning tree to prevent an unexpected loop caused by miscabling/misconfiguration.

Remi Astruc

View solution in original post

Reply
Highlighted
Antonio Macia
Antonio Macia Beginner
Beginner
‎02-14-2020 05:53 AM
‎02-14-2020 05:53 AM

Re: MST TCN BPDUs interaction

Thank you Remi.

0 Helpful
Reply
Latest Contents
Pondering Automation: Collaboration at Its Finest
Created by Shaun Roberts on 02-28-2020 05:11 AM
0
0
0
0
  Howdy out there in automation land! And welcome to the first blog of 2020... I know its been too long without one, but we have had so many things going on and lots I want to write about. And of course, make videos about them... so I just had to pi... view more
Unable to properly install ACI/APIC vCenter plugin
Created by mathew.goddard on 02-21-2020 10:52 PM
0
0
0
0
APIC 4.1(2u)vCenter appliance 6.7.0.42000 I followed the instructions at "https://[APIC FQDN]/vcplugin/", using PowerCLI to install the plugin. It seemed to work - "[x] Installed vCenter plugin version 4.1.2000.21". However, on logging into... view more
Intersight integration into Cisco TAC
Created by sselgrad on 02-21-2020 12:59 PM
0
0
0
0
  Learn more about Intersight's integration into TAC and how it will save you time.    
How to subscribe to Intersight Product Update emails from Ci...
Created by sselgrad on 02-21-2020 12:49 PM
0
0
0
0
  Login to Cisco Communities Go to the Cisco Intersight Community and to Intersight Product updates Click Subscribe *This means you will get an email only if content is posted specifically to Intersight Product Updates. And all product updates wi... view more
Unable to SSH a leaf from Apic after replacement of the leaf...
Created by TusharTanna9319 on 02-14-2020 11:16 AM
1
0
1
0
Hi,There was a leaf Switch live in our fabric which was having some issues . We got an RMA for it and replaced the new leaf Switch with the same Node ID. After replacement we are unable to SSH the new leaf Switch from APIC .getting some error for RSA keys... view more
CreatePlease to create content
Discussion
Blog
Document
Video