Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
410
Views
5
Helpful
2
Replies

Spanning tree bpdu

ROBERTO TACCON
Level 4
Level 4

‎08-31-2005 01:20 AM - edited ‎03-02-2019 11:52 PM

is it true that if I configure on a switch port the following commands:

spanning-tree bpdufilter enable

spanning-tree bpduguard enable

the bpduguard is ineffective ?

http://www.cisco.com/univercd/cc/td/doc/product/lan/cat4000/12_2_20/config/stp_enha.htm#wp1020395

"Enabling BPDU filtering on an interface is the same as disabling spanning tree on it and can result in spanning-tree loops."

Thanks in advance.

Labels:
0 Helpful
2 Replies 2

cdusio
Level 4
Level 4

‎08-31-2005 05:44 AM

no.

enabling bpdu guard in that specific case will result in the switch ignoring bpdu's it receives and not sending any as well.

Now, if you enable it globally, and then leave the port in the default state, it will send out 10 bpdu's then if noe are received, go into bpdu filtering state.

Again, any portfast port that receives BPDU's on it will lose portfast state and then bpdu filtering is disabled.

HTH

Chris

0 Helpful

Francois Tallet
Level 7
Level 7

‎09-02-2005 08:29 AM

The answer is subtle because it depends on the order the code deals with the configuration. Right now, when receiving a BPDU, STP checks in order for:

-per-port bpdufilter configuration

-per-port bpduguard configuration

-global bpduguard configuration

That means that if bpdufilter is configured on a port, the BPDU will dropped before BPDU guard has a change to see it, ie, BPDU guard will not be triggered.

On the other hand, bpdufilter can be configured globally. In that case, incoming BPDUs are not filtered and BPDU guard will be triggered.

Regards,

Francois

Customers Also Viewed These Support Documents