Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1078
Views
0
Helpful
6
Replies

Problem with BPDU Filter in Switch

Jermy Franklin
Level 1
Level 1

‎05-29-2013 08:25 AM - edited ‎03-07-2019 01:37 PM

Hi,

I am testing BPDU filter with 3560 model switch so I've looped 2 interfaces in that switch by configuring STP BPDU filter on interface levels and also connected one desktop in other interface on same vlan of looped interfaces with bpdufilter config. Problem here im facing is both the looped interfaces are having heavy traffic due to this my switch CPU utilization also reached high. Could you please help me to sort out this issue like why my switch interfaces traffic & CPU utilization went high even when I am using BPDU filter at interfcae level? As well as correct my BPDU configuration If I configured wrong.I thought it is a good pratice and enabled this conf in some of my working environemnt but due to some loop my entire network went down :-( So can somebody help me in this. FYR, please find the attached switch configuration & some screen shots.

Regards,

Jermy

Labels:
Preview file
120 KB
0 Helpful
6 Replies 6

mfurnival
Level 4
Level 4

‎05-29-2013 08:41 AM

Read this: https://supportforums.cisco.com/docs/DOC-11825

0 Helpful

Edison Ortiz
Hall of Fame
Hall of Fame

‎05-29-2013 08:42 AM

The behavior is expected as you are disabling the BPDU services in the switch when filter is enabled.

Please refer to the documentation. It indicates enabling BPDU filtering will result on spanning-tree loops.

http://www.cisco.com/en/US/docs/switches/lan/catalyst3560/software/release/12.2_52_se/command/reference/cli3.html#wp1945458

Maybe you were looking into BPDU Guard?

Regards,

0 Helpful

paul driver
VIP
VIP

‎05-29-2013 10:58 AM

Hello

Previous lab testing stp bpdu's filter I came to these conclusions:

1) Applied Globally it will trigger the port to stop using portfast and bpdu filtering will stop on that port

2) Applied at interface level bpdu's filtering will occur irrespective of portfast enabled or not - basically it's the same as disabling stp on the port. And can result in stp loops

Hope this helps

Res
Paul

Sent from Cisco Technical Support iPad App


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful

Giuseppe Larosa
Hall of Fame
Hall of Fame

‎05-29-2013 12:42 PM

Hello Jermy,

you have successfully created a bridging loop on the switch as noted by Edison, you NEED to use bpduguard instead of bpdufilter.

But you are not alone, I still find customers using inappropriately the bpdufilter command at interface level.

And every time we need to remove it.

Hope to help

Giuseppe

0 Helpful

Jermy Franklin
Level 1
Level 1
In response to Giuseppe Larosa

‎05-30-2013 01:29 AM

Thanks to all for your comments & Suggestions. Then what is the use of BPDU filter in switching part?

Regards,

Jermy

0 Helpful

Jan Rolny
Level 3
Level 3
In response to Jermy Franklin

‎05-30-2013 01:46 AM

Hi Jeremy,

sometimes it is used for reduction of traffic which is generated by STP on ports where end stations are conencted.

As describe above in interface level mode loop can occurs when swith is connected to this port. In global level mode if switch is connected, so port looses his portfast status and loop will not occur.

Best Regards,

Jan

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card