Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
776
Views
15
Helpful
4
Replies

Sanity check on design doc please

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame

‎09-25-2012 10:16 AM - edited ‎03-07-2019 09:06 AM

It's probably me but could someone have a look at this link in Cisco's campus network design doc -

http://www.cisco.com/en/US/docs/solutions/Enterprise/Campus/HA_campus_DG/hacampusdg.html#wp1108489

scroll down to figure 41 where the distribution switch interconnect is blocking and both access layer switch uplinks are forwarding. If vlan 2 is on both access-layer switches does this not form a L2 loop ?  The diagram shows both switches forwarding on vlan 2 on both links but to me that seems as though a packet such as a broadcast could origiinate on one access-layer switch and then end up back there.

If each access-layer switch had it's own vlan then i could understand the logic but not with both switches having the same vlan.

Am i missing something ?

Incidentally this is linked to the question about GLBP and STP in case anyone wants some more context.

Jon                  

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Giuseppe Larosa
Hall of Fame
Hall of Fame

‎09-25-2012 10:59 AM

Hello Jon,

from what I can see the network design of Figure 41 is based on the fact of having the link between distribution switches blocked

>> Figure 41     GLBP with STP Blocking Distribution-to-Distribution Link

But you are right if both access layer switches serve the same Vlan another link should be blocked or a loop is formed. it is not enough to block on distribution to distribution link.

I guess you are right as you see they have used different colors, so the right figure should be use different client Vlans on different access layer switches.

So this should be a variant of the design with no L2 connection between distribution switches ( I don't remember if it is called U or V design).

To do so the link between the two distribution switches has been assigned a rather high STP cost on the non root side so that Dis2 (the one on the right in the picture)  reaches the root bridge via access layer switch.

This STP configuration changes allows both uplinks to be in forwarding state allowing access switch end users to access the GLBP  AVFs but as you noted should require the deployment of different client vlans on different access layer switches.

EDited : I was fouled at the beginning then when I took a piece of paper to draw the diagram I understood your doubts

Hope to help

Giuseppe

View solution in original post

Go to solution
Giuseppe Larosa
Hall of Fame
Hall of Fame
In response to Jon Marshall

‎09-25-2012 11:12 AM

Hello Jon,

I was still modifying my answer now I agree with you the document is wrong another link would be blocked if both access layer switches are in the same client vlan

This STP configuration changes allows both uplinks to be in forwarding state allowing access switch end users to access the GLBP  AVFs but as you noted should require the deployment of different client vlans on different access layer switches.

If it is the same vlan another link of Dis2 would be blocked so the use of both uplinks would be true only for one access layer switch.

Hope to help

Giuseppe

View solution in original post

0 Helpful
4 Replies 4

Go to solution
Giuseppe Larosa
Hall of Fame
Hall of Fame

‎09-25-2012 10:59 AM

Hello Jon,

from what I can see the network design of Figure 41 is based on the fact of having the link between distribution switches blocked

>> Figure 41     GLBP with STP Blocking Distribution-to-Distribution Link

But you are right if both access layer switches serve the same Vlan another link should be blocked or a loop is formed. it is not enough to block on distribution to distribution link.

I guess you are right as you see they have used different colors, so the right figure should be use different client Vlans on different access layer switches.

So this should be a variant of the design with no L2 connection between distribution switches ( I don't remember if it is called U or V design).

To do so the link between the two distribution switches has been assigned a rather high STP cost on the non root side so that Dis2 (the one on the right in the picture)  reaches the root bridge via access layer switch.

This STP configuration changes allows both uplinks to be in forwarding state allowing access switch end users to access the GLBP  AVFs but as you noted should require the deployment of different client vlans on different access layer switches.

EDited : I was fouled at the beginning then when I took a piece of paper to draw the diagram I understood your doubts

Hope to help

Giuseppe

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame
In response to Giuseppe Larosa

‎09-25-2012 11:06 AM

Thanks for the response Giuseppe but i am still not getting it. From the diagram -

if a broadcast packet is received on Access A it is forwarded to both to dist A and dist B.

1) Dist A would forward it to Access B which would then forward it to dist B which would then forward it back to Access A.

2) Dist B would also receive the packet from Access A. Dist B forwards it to Access B which forwards it to dist A and back to Access A.

If all the links are forwarding for the same vlan then what stops the above happening ?

*** Edit - sorry i missed your last underlined bit or i was a bit too fast typing my response. So if the vlan is same on both access switches can you actually see it working ? 

Sorry, just reread your post and it looks like we agree about the vlans on the access-layer switches. Thanks for checking that for me because i thought i was either missing something or i really didn't understand STP !

Jon

Go to solution
Giuseppe Larosa
Hall of Fame
Hall of Fame
In response to Jon Marshall

‎09-25-2012 11:12 AM

Hello Jon,

I was still modifying my answer now I agree with you the document is wrong another link would be blocked if both access layer switches are in the same client vlan

This STP configuration changes allows both uplinks to be in forwarding state allowing access switch end users to access the GLBP  AVFs but as you noted should require the deployment of different client vlans on different access layer switches.

If it is the same vlan another link of Dis2 would be blocked so the use of both uplinks would be true only for one access layer switch.

Hope to help

Giuseppe

0 Helpful

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame
In response to Giuseppe Larosa

‎09-25-2012 11:16 AM

Giuseppe

Thanks again, glad it's not just me

Jon

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card