Hi. Mark

Thank you for fast reply.

Maybe it has something to do with the case:

 VLAN0002 is executing the ieee compatible Spanning Tree protocol
  Number of topology changes 707 last change occurred 4d21h ago
          from GigabitEthernet0/3
 VLAN0010 is executing the ieee compatible Spanning Tree protocol
  Number of topology changes 730 last change occurred 4d21h ago
          from GigabitEthernet0/2

No similar information in syslogs. Syslog level set to  informational.

I understand that something went wrong. But I can not understand why.What is the reason of LAN crash?

What should I do for this situation is not repeated?

when exactly was it installed/connected ?

do you have the logs from the switch and the times it occurred and the ports involved  ?

did the ports go err-disabled ?

you need to know exactly what happened first before you can prevent it again , it may help to have the switch configured with the correct vlans before connecting it the next time to each port

New switch actually is the CITRIX Server with 4-ports line card. So, no any logs.

There are no PM-4-ERR_DISABLE messages from nearest switches.

The problem is that not enough information.

That's why I appealed to you to hear an authoritative opinion.

What could theoretically happen and how to prevent it in the future?

Why do I see PC's  mac address from gateway,  but ping between PC and gateway lost?

how long ago did it happen ?

without logs your just guessing really , the mac and arp tables are separate , just because you see the mac address does not mean you can ping it , was the ip arp resolved to the that mac address or was it incomplete at the time you seen it at the gateway

dual linking a server with a switch module to 2 switches like that is going to cause some form of stp calculation , were your ports configured with portfast on Cisco side ?

The port where is connected the server:

interface FastEthernet0/30
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 602
 spanning-tree portfast

The gateway(router) and PC are in one VLAN. From the gateway I saw PC's mac in two different VLANs. As I known every vlan has it's own mac address table.

So, what may be in this case to prevent work IP proto? In theory.

does the stp timer change tie in with the install ?

last change occurred 4d21h ago

did you check the arp table for that PC mac to see if it was associated with 2 ips ?

Its most likely the result of a loop when you see a mac in multiple vlans

***************

No, i didn't check arp table. Didn't have time

Seems like  my issue.

But is there a way to prevent this problem?

What is best practices to avoid loops across VLANs ?

dual links cause loops if not configured properly , I don't know what that citrix 4port device is capable of if it even understands stp, if your connecting anymore I would only connect 1 link at a time and make sure everything is converged/configured and working before connecting the 2nd link

As I understood, If all of LAN switches can STP, and if the across VLANs loop appears, so one port must be blocked, according to STP routine.

But if BPDU can't pass thru the CITRIX,  STP will not working right?

By the way, because of VLANs acrossing in one point only. we can't see broadcast storm. No full loop. Just acrossing.