Re: Help Required to Improve the Network Architecture

Yasir Iqbal · ‎04-21-2020

Dear All,

I have attached our network architecture diagram. We are using inter-vlan routing for our ntework. DHCP pool for every Vlan is configure on core switch. Each aggregation switch using different VLAN. Some time network chok or hang due to broadcast generated from any where.

So please help me to improve the architecture using existing hardware.

Leo Laohoo · ‎04-21-2020

@Yasir Iqbal wrote:

Some time network chok or hang due to broadcast generated from any where.

STP loop?

grabonlee · ‎04-22-2020

Yasir,

Network chokes on specific vlan or all vlans? Are you experiencing STP loop? Do you have any vlan extended across switches and what's your STP mode?

Yasir Iqbal · ‎04-23-2020

Dear,

Network chok on all vlan and we are using rstp.

paul driver · ‎04-23-2020

Hello
Possible suggestions

Access-layer
Apply port security, storm control and stp portfast, bpduguard, to all edge ports
Manually prune vlans off the trunk interconnects for the vlans you don’t need to be advertised
Apply highest stp bridge ID for all vlans on each switch
Enable stp loopguard and UDLD
Apply dhcp snooping on the vlans that receive dhcp allocation, trusting any unplinks
Apply igmp snooping (if running multicasting)

Distribution layer
Manually prune vlans off the trunk interconnects for the vlan you don’t need to be advertised
Apply a high stp bridge ID for all vlans on each switch ( but lower value then access-layer switches)
Enable stp loopguard and UDLD

Core
Make core switch STP root for all vlans
Manually prune vlans off the trunk interconnects for the vlan you don’t need to be advertised
Enable stp loopguard and UDLD
Enable pim BSR with core as RP (if running multicasting)

Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul