cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1659
Views
8
Helpful
7
Replies

Uplink port detecting lots of STP changes sporadically throughout day

Zach8585
Level 1
Level 1

I have a strange issue that I'm having a difficult time locating the source and solution.

I work for a county government.  We have multiple locations but all communications go back to the Core Switch in the Admin building.  The Core switch is currently set manually as the root bridge (with low priority number) for all vlans on the whole network.

Currently we are in the process of updating the network to be run on Meraki almost 100%.  The Core switch is a Catalyst 9500 and was an upgrade a few months ago after the previous core switch died out.  The switch with the multiple STP changes is a Meraki switch in another building (connected by fiber) and is 5 or 6 switches away from the core switch.

When the STP changes happen, I'm seeing two different devices that seem to "take over" as root bridge but it happens very quickly before the Core switch takes over again, and it will flip back and forth quite a few times for a few minutes before it goes back to normal.  When I try to locate those two devices by their mac address (that I get from the wireshark captures), I can't locate them when the network is running smoothly.  This makes me think there's a device that someone has and is using throughout the day just plugging in to the network at random times throughout the day.  I'm trying to catch the STP changes happen realtime so maybe I can track down those devices, but it's hard to arrange that when I don't know when to expect it to happen, and with the fact that I'm a very busy person working on many other things simultaneously.

Does anyone have any suggestions on how to troubleshoot this?  I've been working on this for a week now and it's driving me nuts with the constant outages it is causing for devices on that switch (phones, computers, printers, etc

1 Accepted Solution

Accepted Solutions

Zach8585
Level 1
Level 1

Been a while, just wanted to update everyone on this in case anyone comes across something similar.

What I ended up doing was turning off RSTP on the Meraki Switches due to some possible "incompatibility" with Cisco Catalyst STP processes.  This is just based off of some reading I've done, reading articles of other people's experiences.  Something about having a mix of Catalyst and Meraki switches can apparently cause STP issues.  So my plan at this point is to have all Meraki Switches not do any RSTP advertisements until we are done upgrading the whole network with Meraki switches.  Since the main core switch is the root bridge for all Vlans at this point, this should not be an issue doing it this way.

Thanks again for everyone's suggestions.

View solution in original post

7 Replies 7

marce1000
VIP
VIP

 

 - Can sometimes  also happen , when it has physical connectivity problems towards the core and or becomes isolated from the root-bridge, check counters of uplink ports (e.g.)

 M.



-- ' 'Good body every evening' ' this sentence was once spotted on a logo at the entrance of a Weight Watchers Club !

Can you please elaborate a little bit?  I'm not following you completely.

Thanks

balaji.bandi
Hall of Fame
Hall of Fame

Can you make small diagram for us to understand.

make sure you elect right place for teh Root bridge for the VLAN with priority so that will give you control not to elect other switch as root bridge.

Meraki tend to elect as root bridge that what we observered

This just to get an to identify the problem

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Hello,

you could configure BPDU Guard on all access ports of the 'problem' Meraki. When a BPDU is detected, the port in question will transition to 'disabled'. You will then need to go and find out what is connected to that port...

https://documentation.meraki.com/MS/Port_and_VLAN_Configuration/Configuring_Spanning_Tree_on_Meraki_Switches_(MS)

Deepak Kumar
VIP Alumni
VIP Alumni

Hi,

I suggest to BPDU Gaurd on all access switches and disable the error recovery feature set for a while. Mostly, I will trace such issues with the "show spanning-tree details" command (in the small network only). You will find the source port of the issue. You might need to check multiple switches for it. 

I faced the same issue as you a few months ago and we found that it was caused by one of the HOST Vswitch. 

Regards,
Deepak Kumar,
Don't forget to vote and accept the solution if this comment will help you!

Zach8585
Level 1
Level 1

Been a while, just wanted to update everyone on this in case anyone comes across something similar.

What I ended up doing was turning off RSTP on the Meraki Switches due to some possible "incompatibility" with Cisco Catalyst STP processes.  This is just based off of some reading I've done, reading articles of other people's experiences.  Something about having a mix of Catalyst and Meraki switches can apparently cause STP issues.  So my plan at this point is to have all Meraki Switches not do any RSTP advertisements until we are done upgrading the whole network with Meraki switches.  Since the main core switch is the root bridge for all Vlans at this point, this should not be an issue doing it this way.

Thanks again for everyone's suggestions.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: