Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
599
Views
5
Helpful
7
Replies

dot1q tunneling

Go to solution
Antonio_1_2
Level 1
Level 1

‎11-11-2009 07:04 AM - edited ‎03-04-2019 06:40 AM

Hello,

I have a network topology as shown in document in the attachment. If second provider doesn't tunnel BPDU packets(i.e. missconfiguration), is it possible to have a layer 2 loop? Will PROVIDER 2 drop bpdu packets, or there is some mechanism that will take care situations like this?

regards,

A.

Labels:
21022-NETWORK.vsd
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Giuseppe Larosa
Hall of Fame
Hall of Fame
In response to Antonio_1_2

‎11-11-2009 09:15 AM

Hello Antonio,

yes your switches need to be aware that both links are going to the same place unless you are permitting two different sets of vlans with no overlapping it will create a loop.

providers switches cannot distinguish between vlans to be tunneled and vlans to be blocked you need to use

swithcport trunk allowed vlan

to define only the needed vlans that should go over each pipe.

Hope to help

Giuseppe

View solution in original post

0 Helpful
7 Replies 7

Go to solution
Mohamed Sobair
Level 7
Level 7

‎11-11-2009 07:45 AM

Hi,

I couldnt view the attach file, however, Tunneling from the provider prespective shouldnt dropp BPDus unless BPDU filtering is configured at the provider edge.

So, the result , with QinQ tunneling , you could still have layer2 loops.

HTH

Mohamed

0 Helpful

Go to solution
Antonio_1_2
Level 1
Level 1
In response to Mohamed Sobair

‎11-11-2009 07:54 AM

Hi,

I've attached topology now as a word document.

The thing is that I don't know if any link in network will be blocked in this scenario, because PROVIDER 2 dosen't tunnel BPDUs. And consequence is layer 2 loop.

A

105 KB
0 Helpful

Go to solution
Giuseppe Larosa
Hall of Fame
Hall of Fame
In response to Antonio_1_2

‎11-11-2009 08:26 AM

Hello Antonio,

also the second provider should implement L2 protocol tunneling for STP.

otherwise a loop can occur

the tunnel port should automatically enable bpdu filtering of service provider STP instances.

Hope to help

Giuseppe

Go to solution
Mohamed Sobair
Level 7
Level 7

‎11-11-2009 08:15 AM

Hi,

Yes, In this case , you could end up with layer-2 loop.

HTH

Mohamed

0 Helpful

Go to solution
Antonio_1_2
Level 1
Level 1
In response to Mohamed Sobair

‎11-11-2009 08:30 AM

Hi,

So this could be or definitely is a layer2 loop?

just a clarification: PROVIDER 1 and 2 has configured dot1q tunneling for my VLANs. SWITCH1 and 2 have trunk on their ports towards PROVIDERS.

A

0 Helpful

Go to solution
Giuseppe Larosa
Hall of Fame
Hall of Fame
In response to Antonio_1_2

‎11-11-2009 09:15 AM

Hello Antonio,

yes your switches need to be aware that both links are going to the same place unless you are permitting two different sets of vlans with no overlapping it will create a loop.

providers switches cannot distinguish between vlans to be tunneled and vlans to be blocked you need to use

swithcport trunk allowed vlan

to define only the needed vlans that should go over each pipe.

Hope to help

Giuseppe

0 Helpful

Go to solution
Antonio_1_2
Level 1
Level 1
In response to Giuseppe Larosa

‎11-12-2009 12:40 AM

Thanks Giuseppe.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card