Hi all, i have just found out on my network that spanning tree is turned off, we have 2 core routers, acting as gateways, they are running vrrp, so one is active, all access switches connect to both distribution switches, and the ditribution switches connect to each other, is there any reason why they would turn spanning tree off ?
Since you are able to post on NetPro it is a sure bet that you do not have redundant layer 2 links. A bridge loop with no spanning tree would kill your network pretty much instantly.
The reason to disable spanning tree is to improve link recovery time. With 802.1D spanning tree you will wait 50 seconds for a link to reach forwarding state. It also reduces the processor load on switches. The risk with disabling spanning tree is that someone will accidentally create a loop and meltdown the network.
Should you turn on STP? It depends on your topology, but if your access switch VLANs extend through the distribution switches to the core the answer is yes. If using layer 3 to the access layer, and your access switches are single chassis (or 3750 stacks) maybe not, though I would at least want to run it on user VLANs. Never underestimate the cabling creativity of a user with a hub he bought at CompUSA.
If you do enable STP be sure and do it during a maintenance window, as it will be disruptive.
thanks for your help, from what i can see the network consists of 2 layer 3 dist switches, each access switch connects to both dist switches, im sure they are running vrrp on the dist switches, but the dist switches are also connected to each other, so this would at least create a loop, unless its layer 3, but i cant see how it would be layer 3 between them if running vrrp
The L2 access switches can have no vlan in common. That means that for each vlan, the L2 topology is a V (no loop). The L3 boxes run vrrp through the access boxes on each vlan, not on the L3 link between them.
That's a possibility.
I think you should ask them for more information at that stage. All this is just guessing.
Question We run asr9001 with XR 6.1.3, and we have a very long delay to
login w/ SSH 1 or 2 to the device compare to IOS device. After
investigation, the there is 1s delay between the client KEXDH_INIT and
the server (XR) KEXDH_REPLY. After debug ssh serv...
Introduction The purpose of this document is to demonstrate the Open
Shortest Path First (OSPF) behavior when the V-bit (Virtual-link bit) is
present in a non-backbone area. The V-bit is signaled in Type-1 LSA only
if the router is the endpoint of one or ...
Hi, I am seeing quite a few issues with patch install and wanted to
share my experience and workaround to this. Login to admin via CLI, then
access root with the “shell” command Issue “df –h” and you’ll probably
see the following directory full or nearly ...