Error-disable recovery has a place. In a lab, maybe. But I will never use this method in full-scale production. Why? Because you could potentially bring your network down. Let me explain ...
A few months ago, we had a brand-spanking-new 6800 chugging away. Then one early morning (4 am), a fibre link between two core links went down due to UDLD. Being two core switches, we had BGP running. So when one (of the two links) went down, BGP convergence went all over the place. But the switch remained intact. Unfortunately, some inept person enabled error-disable recovery on UDLD faults. After 300 seconds later, the links went up. Guess what happened? Because the links went up, BGP went into another "state" of convergence which eventually forced the chassis to its knees and crashed.
Fortunately for me, this is not the first time I've seen a case like this. This won't be the last time either.
Error-disable of ports, let it be BPDU guard or UDLD, etc., is a FRIEND and not an enemy. Treat your friend well and you'll be rewarded. Treat "error-disable" like a plague and you'll be sorry.
Peter, where are you? Happy to hear your opinion. :)
We are pleased to announce availability of Beta software for 16.6.3.
16.6.3 will be the second rebuild on the 16.6 release train targeted
towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are
looking for early feedback from customers befor...
Introduction Featured Speakers Luis Espejel is the Telecommunications
Manager of IENova, an Oil & Gas company. Currently he works with Cisco
IOS® and Cisco IOS XE platforms, and NX to some extent. He has also
worked as a Senior Engineer with the Routing P...
In this session you can learn more about Layer 3 multicast and the best
practices to identify possible threats and take security measures. It
provides an overview of basic multicast, the best security practices for
use of this technology, and recommendati...