04-15-2021 11:50 AM
Today i had several Loops in Customers Network and any Vlans were blocked because we had to change the Core from HSRP to VSS:
So on bot the Distribution Switch, which are connected to the Core it looked like:
------------------ show spanning-tree summary ------------------ Switch is in rapid-pvst mode Root bridge for: none Extended system ID is enabled Portfast Default is disabled PortFast BPDU Guard Default is disabled Portfast BPDU Filter Default is disabled Loopguard Default is enabled EtherChannel misconfig guard is enabled UplinkFast is disabled BackboneFast is disabled Configured Pathcost method used is short Name Blocking Listening Learning Forwarding STP Active ---------------------- -------- --------- -------- ---------- ---------- VLAN0001 0 0 0 71 71 VLAN0061 16 0 0 55 71 VLAN0062 17 0 0 54 71 VLAN0063 16 0 0 55 71 VLAN0064 17 0 0 54 71 VLAN0065 25 0 0 46 71 VLAN0066 10 0 0 61 71 VLAN0067 11 0 0 60 71 VLAN0068 10 0 0 61 71 VLAN0069 9 0 0 62 71 VLAN0070 11 0 0 60 71 VLAN0071 14 0 0 57 71 VLAN0072 16 0 0 55 71 VLAN0073 8 0 0 63 71 VLAN0079 26 0 0 45 71 VLAN0080 20 0 0 51 71 VLAN0081 21 0 0 50 71 VLAN0082 21 0 0 50 71 VLAN0083 32 0 0 39 71 VLAN0084 19 0 0 52 71 VLAN0085 21 0 0 50 71 VLAN0087 22 0 0 49 71 VLAN0088 18 0 0 53 71 VLAN0089 23 0 0 48 71 VLAN0090 27 0 0 44 71 VLAN0092 25 0 0 46 71 VLAN0093 23 0 0 48 71 VLAN0094 16 0 0 55 71 VLAN0095 17 0 0 54 71 VLAN0096 16 0 0 55 71 VLAN0097 13 0 0 58 71 VLAN0098 19 0 0 52 71 VLAN0099 16 0 0 55 71 VLAN0100 13 0 0 58 71 VLAN0101 25 0 0 46 71 VLAN0102 18 0 0 53 71 VLAN0103 17 0 0 54 71 VLAN0104 13 0 0 58 71 VLAN0105 17 0 0 54 71 VLAN0106 7 0 0 64 71 VLAN0107 7 0 0 64 71 VLAN0110 12 0 0 59 71 VLAN0111 4 0 0 67 71 VLAN0112 14 0 0 57 71 VLAN0114 11 0 0 60 71 VLAN0115 7 0 0 64 71 VLAN0116 6 0 0 65 71 VLAN0117 13 0 0 58 71 VLAN0118 5 0 0 66 71 VLAN0130 7 0 0 64 71 VLAN0132 12 0 0 59 71 VLAN0200 15 0 0 56 71 VLAN0210 10 0 0 61 71 VLAN0220 13 0 0 58 71 VLAN0230 24 0 0 47 71 VLAN0240 23 0 0 48 71 VLAN0246 8 0 0 63 71 VLAN0250 17 0 0 54 71 VLAN0252 15 0 0 57 72 VLAN0253 16 0 0 55 71 VLAN0300 12 0 0 59 71 VLAN0302 18 0 0 53 71 VLAN0303 20 0 0 51 71 VLAN0310 8 0 0 63 71 VLAN0313 12 0 0 59 71 VLAN0314 5 0 0 66 71 VLAN0500 5 0 0 66 71 VLAN0501 7 0 0 64 71 VLAN0502 9 0 0 62 71 VLAN0503 17 0 0 54 71 VLAN0700 5 0 0 66 71 VLAN0701 5 0 0 66 71 VLAN0800 9 0 0 62 71 VLAN0801 4 0 0 67 71 VLAN0901 6 0 0 65 71 VLAN1100 0 0 0 71 71 VLAN1102 0 0 0 71 71 VLAN1104 0 0 0 71 71 ---------------------- -------- --------- -------- ---------- ---------- 78 vlans 1066 0 0 4473 5539
On both Distribution there are about 90 Switches connected.
The Network were several hours unstable and our fast solution were to disable the Second Distribution Switch, so that there were no Spanning Tree Topology anymore..
I know that there are new Technologies to block Spanning Tree, like Stackwise Virtual and Port-Channels etc... but we had to change this now, because of a new Firewall.
So are the Limits known for an 4500-X-32 for calculating Spanning Tree Calculations ? What can we do to improve that ? MST ?
04-15-2021 12:38 PM - edited 04-15-2021 12:39 PM
If you are moving away from HSRP and want to use VSS at the core, all switches must connect to the core via Portchannels and not individual Interfaces. Are you connecting the access switches directly to the VSS core? What is topology look like?
HTH
04-15-2021 12:55 PM
I have a Core Switch 4500-X which is now a VSS.
2xVSS Distribution 4500-X which are connected to the Core but the Distribution are not VSS across the data centers, so i cannot form a Port-Channel to the Access Switches.
About 90 Access Switches are connected to both Distribution Switches so 1 link is always normally blocked.
04-15-2021 02:36 PM
So, just to clarify. The core switches are 4500x VSS and the distribution switches are also 4500x but not VSS, right?
04-15-2021 11:07 PM
The Distribution are also VSS but not across the data centers. And every Access Switch has a Fiber to both data centers. So unfortunately i cannot create an etherchannel unless i break the VSS for the Distribution Switches and build up new across the Datacenters..
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide