Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
433
Views
0
Helpful
5
Replies

Question on STP Root Guard for BCMSN

Go to solution
keeleym
Level 5
Level 5

‎04-08-2008 06:46 AM - edited ‎03-05-2019 10:15 PM

Hi All

I wonder if someone could clarify somethign for me please regarding STP root guard.

My study material and this Cisco document (http://www.cisco.com/warp/public/473/74.html) states that a port configured with root guard will place that port into root inconsistent state if a superior BPDU is received on the port. Ok no problem here.

It then states that when the switch sending the superior BPDU ceases to send them, then the port with root guard configured will come out of root inconsistent state and transition to listening, learning and then forwarding mode.

What I don't understand is under what condition will the switch sending the superior BPDU ceasse to send them?

Will it except that a switch which has a higher BID (the administratively configured root bridge)is the route bridge and stop sending it's own BPDU's?

Best Regards & TIA,

Michael

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Istvan_Rabai
Level 7
Level 7
In response to keeleym

‎04-08-2008 08:44 AM

Hi Michael,

That's correct.

The new switch will NOT accept the current root switch's bpdu, because the current root switch's bpdu is worse than its own bpdu (the current root switch has a higher bridge ID value).

After all, this is the preliminary condition of the scenario:

"If a port ..... receives a SUPERIOR bpdu from a new switch added to the network"

[Edit]

As I mentioned, this is the normal behavior of STP. The same process happens when the root selection occurs initially:

1. The switch with the superior bpdu continues sending its own bpdus, because it does not hear better bpdus than its own.

2. All other switches stop sending their own bpdus, because they can hear a better bpdu.

This is the root selection process itself.

Cheers:

Istvan

View solution in original post

0 Helpful
5 Replies 5

Go to solution
Istvan_Rabai
Level 7
Level 7

‎04-08-2008 07:58 AM

Hi Michael,

If the newly connected switch sends a better (superior) bpdu than the current root bridge, then without bpduguard the new switch will become the root switch, which is generally inacceptable.

So it will not cease sending its own bpdus, because they are superior to the current root's bpdus.

Instead the current root switch will cease sending its own bpdus, because it will hear a better bpdu.

The newly introduced switch will cease sending its own bpdus into the network if you:

1. disconnect it

2. configure it with an inferior bridge priority (higher priority value than the current root switch).

[Edit] After adjusting the bridge priority, when you reconnect this new switch to the network, it will hear a superior bpdu from the current root switch and will cease to send its own bpdus. This is the normal STP behavior.

Cheers:

Istvan

0 Helpful

Go to solution
keeleym
Level 5
Level 5
In response to Istvan_Rabai

‎04-08-2008 08:22 AM

Hi Istvan

Thank you for your response.

So just to make sure I have this straight.

If a port with root guard configured receives a superior BPDU from a new switch added to the network, the port will go into root inconsistent state, the superior BPDU will be ignored and the current root bridge will remain the root bridge.

The new switch which is sending the superior BPDU's will continue to send them until I:

1. Disconnect it

or

2. Configure it with a higher priority then the currect root bridge, thus making its BPDU inferior.

And without either of these two options be taken, the new switch will continue sending its superior BPDU and the port with root guard configured will remain in root inconsistent state, thus blocking this BPDU.

The new switch will NOT accept the current (manually configured) root bridge with the higher BID root bridge.

Is that correct?

Best Regards & Thanks again,

Michael

0 Helpful

Go to solution
Istvan_Rabai
Level 7
Level 7
In response to keeleym

‎04-08-2008 08:44 AM

Hi Michael,

That's correct.

The new switch will NOT accept the current root switch's bpdu, because the current root switch's bpdu is worse than its own bpdu (the current root switch has a higher bridge ID value).

After all, this is the preliminary condition of the scenario:

"If a port ..... receives a SUPERIOR bpdu from a new switch added to the network"

[Edit]

As I mentioned, this is the normal behavior of STP. The same process happens when the root selection occurs initially:

1. The switch with the superior bpdu continues sending its own bpdus, because it does not hear better bpdus than its own.

2. All other switches stop sending their own bpdus, because they can hear a better bpdu.

This is the root selection process itself.

Cheers:

Istvan

0 Helpful

Go to solution
keeleym
Level 5
Level 5
In response to Istvan_Rabai

‎04-08-2008 10:30 AM

Hi Istvan

Cheers, Thanks a million for the response and clarification. Much appreciated.

Best Regards,

Michael

0 Helpful

Go to solution
Istvan_Rabai
Level 7
Level 7
In response to keeleym

‎04-08-2008 10:48 AM

You're always welcome Michael!

As we say here, we are crossing the ocean in the same ship. (This means we have a common set of goals and problems).

So why not to help each other?

Best regards:

Istvan

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card