I think that STP is not 100% used when you have VSS configuration. But I think the underlying mechanism is still STP as a double protection.
In my opinion I think that STP or better rstp should be used to ensure that you will not have any broadcast storm in the network. If I remember right, You can disable STP on cisco switches but as soon as a cisco switch detects that the attached device is a switch, it will ensure that there will be no storm....it is somewhat a last resort protection.
Configuring it gets useful if you would like to specify which of your switches is the root bridge.
You can trust the protocol to do this by its own but it is always better if you fully understand your network and know what is the normal path of a packet and what would be the path if one of the links would fail. By specifying the root bridge, you can exactly say how your packets flow through the network.
Another option would be to specify portfast. It helps end points to connect to the network in a quick way without the listening and learning phase.
By default in all the cisco switches PVST+(Per VLAN spanning tree) is enabled.
But you have to optimize or fine-tuning the PVST+ configuration to make STP works fine.
Take a example that,
In your switching network you need to elect root bridge based on the priority value.If priority value is same (if you have not fine tuned, the default priority value 32768) then it MAC address will comes to picture for calculation..
In this scenario, if someone is inserted the new switch with the priority value of less than 32768, then the new switch will act as root bridge and your network will be unstable.
This document gives several answers on frequently asked questions for PFRv3 channel state behavior.
Q1: What are all the channel operational states from a BR (border role) perspective and what are the rules/conditions to be in each st...
The need was to reach an host inside a LAN through a VPN connection managed by the LAN gateway (Cisco 1921).
The LAN gateway performs NAT and there was a dedicate nat rule for the host i wanted to reach through VPN.
I couldn't connect to the hos...