Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
582
Views
0
Helpful
4
Replies

BPDG Guard

Go to solution
fjcardenas-1
Level 1
Level 1

‎01-26-2009 09:15 AM - edited ‎03-06-2019 03:39 AM

Is there a difference in BPDU Guard and Root Guard?. I read that with BPDU Guad the port is disabled if it receives a Hello BPDU.... and with Root Guard it can receive Hello BPDU but disables the port if it receives a better BPDU. Can someone let me know those are two different things? Tnks.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame
In response to fjcardenas-1

‎01-26-2009 09:48 AM

Francisco

Have a look at this doc which gives a nice example of where root guard would be used in a switched environment -

http://www.cisco.com/en/US/tech/tk389/tk621/technologies_tech_note09186a00800ae96b.shtml

Jon

View solution in original post

0 Helpful
4 Replies 4

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame

‎01-26-2009 09:34 AM

Francisco

The 2 features are essentally doing 2 different things.

1) BPDU Guard is enabled on a port or globally in which case it applies to all ports enabled as portfast. The idea behing BPDU Guard is that a BPDU should never been seen on this port as there should not be another switch connected to this port.

2) Root Guard is enabled on a port basis and is designed to make sure that the switch you have designated as the root bridge stays as the root bridge. So a port enabled with Root Guard would expect to receive BPDU's on it as there will be a switch on the other end but it does not expect to see a superior BPDU ie. it does not expect to see A BPDU that would lead to a new root bridge being selected.

Jon

0 Helpful

Go to solution
fjcardenas-1
Level 1
Level 1
In response to Jon Marshall

‎01-26-2009 09:46 AM

Another question comes to me... so, is Root Guard configured only in ports of the Root Switch to ensure the actual Root Switch remains been the root? or it can be configure on Non-Switch ports to avoid a Switch with a better BPDU than the actual Root Switch to cause a change by becoming the Root Switch?

0 Helpful

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame
In response to fjcardenas-1

‎01-26-2009 09:48 AM

Francisco

Have a look at this doc which gives a nice example of where root guard would be used in a switched environment -

http://www.cisco.com/en/US/tech/tk389/tk621/technologies_tech_note09186a00800ae96b.shtml

Jon

0 Helpful

Go to solution
fjcardenas-1
Level 1
Level 1
In response to Jon Marshall

‎01-26-2009 11:16 AM

Thank you.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card