Hi everybody.

We have a Cisco chassis switch C7010 (NXOS 6.2.16) as a core of the Ethernet lan. Where we aggregate trunk ports from all Ethernet nodes.

But in there switch no have classic "loop detection" function.

How i understand that is possible realize by STP, which is enable by default there.

Now i enable mac address-table notification and change the logging level and starting receive this:

2017 Jul 24 13:00:08 swcore %L2FM-4-L2FM_MAC_MOVE: Mac bcad.286d.0e83 in vlan 1035 has moved from Eth10/27 to Eth10/9

1) Main aim of my questions is a detect+block parasites Broadcast traffic borned by Loops on other switches connected with trunks to N7K.

How i think, it can be solved with 'stp Loopguard enable' and 'stp bpdufilter enable'

2) And i have access mode ports on N7k and need realize Loop-Detection for all access ports.

3) Also sometimes i got a message:

2017 Jul 21 15:30:59 swcore %$ VDC-1 %$ %STP-2-BLOCK_PVID_LOCAL: Blocking Ethernet1/13 on VLAN1005. Inconsistent local vlan.
2017 Jul 21 15:30:56 swcore %$ VDC-1 %$ %STP-2-UNBLOCK_CONSIST_PORT: Unblocking port Ethernet1/13 on VLAN1005. Port consistency restored.

Event:E_DEBUG, length:113, at 212383 usecs after Fri Jul 21 16:06:31 2017
[105] stp_sstp_bad_pvid() port Eth1/13 SSTP BPDU rcvd on VLAN 1005, VLAN tag 211 making local port inconsistent

Tag 211 is not configured on N7K. And this is no my tag.

As i know this may be reason is a different configs on trunk ports. How i understand this can be solve by "bpdufilter enable" on Int eth1/13

How can i configure STP as classical loop-detection on base-mac-addr (I Need block vlan, don't need block eth port).

PS. We do not use STP tolopogy for lan sw.

_

Sorry for my bad Eng.

Regards.