Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
675
Views
3
Helpful
6
Replies

Phone ports and portfast

rcoote5902_2
Level 2
Level 2

‎08-25-2009 09:21 AM - edited ‎03-06-2019 07:25 AM

Hi,

I had a switchport shut down today due to an unexpected bpdu - and I have bpduguard enabled. Turns out it was a 7940 phone on that port...do the 7940's send bpdu's or would someone have to have plugged something into the switchport on the phone for this to happen?

Should portfast be disabled on ports with phones?

Labels:
0 Helpful
6 Replies 6

Edison Ortiz
Hall of Fame
Hall of Fame

‎08-25-2009 09:38 AM

No, IP Phone do not send BPDUs as they don't run any Spanning-Tree (just a note; dumb hubs do not send BPDUs either).

Having the switchport with BPDUguard prevented a loop in your network and you must keep it active on host facing switchports.

Portfast must be enabled on host facing switchports as this feature speed up the process for obtaining vital information such as DHCP IP.

HTH,

__

Edison.

rcoote5902_2
Level 2
Level 2
In response to Edison Ortiz

‎08-25-2009 10:45 AM

So what you're saying is something other than the phone had to have been plugged into that port?

0 Helpful

Edison Ortiz
Hall of Fame
Hall of Fame
In response to rcoote5902_2

‎08-25-2009 10:46 AM

Yes, most likely was a switch.

0 Helpful

jbrenesj
Level 3
Level 3

‎08-25-2009 01:01 PM

It has happened that the user sitting at the desk where the IP phone is connects one of the free cables connected to another jack to the "computer port" on the IP phone and of course the cable from the jack is connected to a switchport, this will trigger the bdpuguard violation. All of this is good because otherwise it could have caused a network loop.

0 Helpful

Francois Tallet
Level 7
Level 7
In response to jbrenesj

‎08-25-2009 01:11 PM

Actually, I would like to chime in here.

BPDU guard is a matter of enforcing a policy, not preventing loop. It's not because that you received a BPDU that there was redundancy. And if there is redundancy detected in the content of a BPDU, STP is responsible for breaking the loop.

So don't consider that BPDUguard saved you from a loop. BPDU guard reacted to a security policy that prevents a device running STP from connecting to your access port.

Regards,

Francois

0 Helpful

rcoote5902_2
Level 2
Level 2
In response to Francois Tallet

‎08-25-2009 02:04 PM

I'd agree. I've enabled BPDUguard to prevent people from bringing home switches/wireless devices and plugging them in.

When we've had users loop their phone back into the network the port just disables with a general loopback error.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card