Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1532
Views
0
Helpful
3
Replies

Restricting BPDU Flooding only to VLAN

active.hub2
Level 1
Level 1

‎07-13-2020 05:32 AM

I am using one Cisco SG300. I am trying to simulate two unmanaged switches in the cisco managed switch using VLANs.

Port 3 - VLAN 2 - Access
Port 4 - VLAN 2 - Access
Port 5 - VLAN 3 - Access
Global STP - Disabled

I am trying to test STP of another device. For this, I enabled 'BPDU Flooding' in SG300.

When I connect 2 ethernet ports of my device to port 3 and port 4 of SG300, my device detects the loop.
When I connect 2 ethernet ports of my device to port 4 and port 5 of SG300, my device still detects the loop. I dont want this to happen. I want to configure SG300 such that BPDU flooding happens only within VLAN. I mean, the BPDU traveling in VLAN 2 should not be seen in VLAN 3 and vice versa.

Can someone please tell what configuration I can do, to make this happen.

Thanks in advance.

uv.

Labels:
0 Helpful
3 Replies 3

pieterh
VIP
VIP

‎07-13-2020 11:26 PM

BPDU's are NOT sent per VLAN!

so your question "the BPDU traveling in VLAN 2 should not be seen in VLAN 3 and vice versa" is not possible.

but

- you can totally disable bpdu's on port-5 ? read this post:

You always should allow STP to run on a switch to prevent loops. However, in special cases when you need to prevent BPDUs from being sent or processed on one or more switch ports, you can use BPDU filtering to effectively disable STP on those ports.you would use bpdufilter when you want a switch plugged into your network but you don't want it participating in spanning tree.

- or you can want to convert from (R)STP to MST?

  and use separate MST instance for each vlan so each performs its own loop-detection.

 

 

0 Helpful

active.hub2
Level 1
Level 1
In response to pieterh

‎08-18-2020 03:54 AM

Hi Pieter,

Please let me try to explain my requirment.  I am trying to simulate 2 unmanaged switch scenario using VLANs.

1. Cisco switch should not process any BPDUs

2. If cisco switch receives a BPDU in a port that belongs to VLAN 2, it should be flooded to all ports in VLAN2.  It should not send it to ports of other VLAN.

3. If cisco switch receives a BPDU in a port that belongs to VLAN3, it should be flooded to all ports in VLAN3.  It should not send it to ports of other VLAN.

Please help in getting the necessary configuration using Cisco Switch.

0 Helpful

paul driver
VIP
VIP

‎07-14-2020 03:13 AM

Hello

 

 

@active.hub2 wrote:

I am using one Cisco SG300. I am trying to simulate two unmanaged switches in the cisco managed switch using VLANs.

Port 3 - VLAN 2 - Access
Port 4 - VLAN 2 - Access
Port 5 - VLAN 3 - Access
Global STP - Disabled

I am trying to test STP of another device. For this, I enabled 'BPDU Flooding' in SG300.

When I connect 2 ethernet ports of my device to port 3 and port 4 of SG300, my device detects the loop.
When I connect 2 ethernet ports of my device to port 4 and port 5 of SG300, my device still detects the loop. I dont want this to happen. I want to configure SG300 such that BPDU flooding happens only within VLAN. I mean, the BPDU traveling in VLAN 2 should not be seen in VLAN 3 and vice versa.

 

The loop is occuring because youve have disabled spanning-tree, enable it then communication should only be allowed between the devices in the same vlan


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card