Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
We have around a dozen Catalyst 3560 and 2960 switches in a ring topology. We are considering adding storm control to our trunk ports. Up until now we have only used it on edge ports with default values and without error-disable.I am proposing that w...
We have a fairly standard RPVST+ spanning tree topology over a number of Catalyst switches (3560 and 2960 mainly). We have some behaviour that we consider strange on only one VLAN. All VLANs have the same root apart from two (504 & 505). These connec...
We wish to migrate our Rapid-PVST+ network of around 25 switches to MST but for reasons that we believe are valid we do not want to start with the core switches. We want to convert one part of our network first that is connected to the core with a si...
It appears that the new 2960C switches are not compatible with CNA version 5.6.3:Unsupported Device Type: WS-C2960CG-8TC-LCannot add device xxx.xxx.xxx.xxx to communityNot impressive. If they are not manageable via CNA there is not much point stickin...
I am scratching my head about how to secure our management network (ie the one with our switches on it). We want to route all traffic via the management firewall not through the 3560. Since the central routing 3560 has an IP on the management network...
If you consider dot1q the native vlans have to be the same on both end of the links.I am not sure they have to be, although certain problems may arise. There is a good discussion on it here: https://learningnetwork.cisco.com/thread/6543. Daniel
PaulI understand your reluctance to change the whole 3500 network to meet your current needs but I would urge you to consider fixing it in a downtime window.If you really cannot do this then you are heading into territory where VLAN number mean diffe...
EduardoI agree with Alain, you need to be very careul with BPDUfilter as it will completely discard BPDUs and you will be vulnerable to a loop between two ports on a switch. I think that this is the fault condition that you described. Please see this...
PaulGenerally speaking it is a good idea to separate IP phones and PCs by using VLANs. You can also separate your servers if you want. It is crucial to understand, though, that there will be no communication between VLANs so if you are going to use ...
