cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1252
Views
0
Helpful
3
Replies

CDP Info on Access Port

Jason Fraioli
Level 3
Level 3

Hello, I have a few questions regarding CDP.

Is it common practice to disable CDP on access ports?

I am seeing CDP entries in Wireshark for the network I am connected to (Cisco_0a:ff:96 CDP/VTP/DTP/PAgP/UDLD). When I drill down into the packet, specifically under the "Cisco Discovery Protocol" field, I see that the Native VLAN is incorrect. The native VLAN for the subnet I am on, should be 50, but Wireshark shows the Native VLAN as 29, which is the subnet I am attached to.

The trunk port of the switch I am connected to has the "switchport trunk native vlan 50" command.

Any idea what would cause this behavior?

3 Replies 3

Giuseppe Larosa
Hall of Fame
Hall of Fame

Hello Jason,

if the port config contains:

switchport trunk native vlan 50

switchport access vlan 29

what you see is correct : the native vlan is the untagged Vlan when the port is trunking.

other thought :

you may be receveing the CDP packets out the monitor destination port not only the ones coming from the source port (the one mirrored) and this could explain.

See multiple CDP frames if you see on some vlan 29 and on others vlan 50 you are receveing both.

Hope to help

Giuseppe

Mark, Thanks for the best practices.

Giuseppe, the trunk port contains "trunk native vlan", the access port contains "access vlan". The trunk and access commands are not on the same port. In other words, the access port I am connected to (fa0/22) is not trunking.

Mark Yeates
Level 7
Level 7

Jason,

It is a common practice to disable CDP on user access ports.

HTH,

Mark

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Innovations in Cisco Full Stack Observability - A new webinar from Cisco