Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
527
Views
0
Helpful
4
Replies

Switch connected to rootgurad port

Go to solution
shanilkumar2003
Level 1
Level 1

‎09-12-2013 06:26 AM - edited ‎03-07-2019 03:26 PM

Hi

If i connect a switch with better bpdu to a rootguard enabled switch port, the switchport will go root inconsistent state. and after a while when the new swicth ceased sending superior bpdus the rootguard enabled port will start forwarding.

I need to clarify what should happen next , whether it will allow the new switch to be part of Spanning tree topology and both ports will be transitioned to desiganted

Thanks in Advance..

Shanil

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
John Blakley
VIP Alumni
VIP Alumni

‎09-12-2013 06:35 AM

Shanil,

As you said, as long as it's receiving superior bpdu's, it will stay in a root-inconsistent state. Until the switch is modified to either a lower priority (lower <> better) than the switch with rootguard configured, it will stay in this state. Once you get the switch configured to a less preferred priority, then the switch will be able to come up and participate in STP.

For example, if the priority of your rootguard switch is 32768 with a mac of 1111.1111.1112 and the switch connected is 32768 with a mac of 1111.1111.1100, then the new switch is sending superior bpdus. You should change the new switch to a lower priority like 36864, so the mac address doesn't come into play. Once that's done, the switch would act as another extension to the network and participate in STP. The interconnected switch links from the newly added switch would show as a root port and the switch with root guard configured would show as a designated port leading to the new switch.

HTH,
John

*** Please rate all useful posts ***

HTH, John *** Please rate all useful posts ***

View solution in original post

0 Helpful

Go to solution
paul driver
VIP
VIP

‎09-12-2013 06:49 AM

Hello

All switchport should be part of spanning-tree!

The root guard feature is to stop the port its assigned to from becomming a root port, So any switch attaching to this port should not become the root bridge.

So as long as this "new switch" has an negotiated higher bridge ID, then traffic will be allowed across.

res

Paul

Please don't forget to rate any posts that have been helpful.

Thanks.


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul

View solution in original post

0 Helpful
4 Replies 4

Go to solution
John Blakley
VIP Alumni
VIP Alumni

‎09-12-2013 06:35 AM

Shanil,

As you said, as long as it's receiving superior bpdu's, it will stay in a root-inconsistent state. Until the switch is modified to either a lower priority (lower <> better) than the switch with rootguard configured, it will stay in this state. Once you get the switch configured to a less preferred priority, then the switch will be able to come up and participate in STP.

For example, if the priority of your rootguard switch is 32768 with a mac of 1111.1111.1112 and the switch connected is 32768 with a mac of 1111.1111.1100, then the new switch is sending superior bpdus. You should change the new switch to a lower priority like 36864, so the mac address doesn't come into play. Once that's done, the switch would act as another extension to the network and participate in STP. The interconnected switch links from the newly added switch would show as a root port and the switch with root guard configured would show as a designated port leading to the new switch.

HTH,
John

*** Please rate all useful posts ***

HTH, John *** Please rate all useful posts ***
0 Helpful

Go to solution
shanilkumar2003
Level 1
Level 1
In response to John Blakley

‎09-12-2013 08:51 AM

Excellent its clear now. Thank you john

Shanil

Sent from Cisco Technical Support iPhone App

0 Helpful

Go to solution
paul driver
VIP
VIP

‎09-12-2013 06:49 AM

Hello

All switchport should be part of spanning-tree!

The root guard feature is to stop the port its assigned to from becomming a root port, So any switch attaching to this port should not become the root bridge.

So as long as this "new switch" has an negotiated higher bridge ID, then traffic will be allowed across.

res

Paul

Please don't forget to rate any posts that have been helpful.

Thanks.


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful

Go to solution
shanilkumar2003
Level 1
Level 1
In response to paul driver

‎09-12-2013 08:51 AM

Thank you paul

Sent from Cisco Technical Support iPhone App

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card