I'm fairly new to STP and have a few questions. Right now I have two 6509's connected via an etherchannel running PVST, core1 is the root and core2 has the designated root port list it should. When I do packet captuers on my production internet vlan I see my workstation generating a ton of STP packets. First should I be seeing this and second when I do a show spanning-tree vlan xx I see desktop ports listed here is this correct? Should I not just see the ports that are connecting the switches, i.e. the forwarding port, root port and blocked ports?
Your workstation is generating STP packets? Do you have interfaces on your workstation bridged?
Ports facing your devices should still be in the forwarding state, and are likely "designated" ports for those segments. If you see a root port facing your workstations, you know you have something fun going on.
Well what I'm seeing when I run wireshark is the normal web traffic and when I see the STP packets the source is my switchport ID(not my laptop MAC) Cisco_aa:xx:xx and the dest is Spanning-Tree-(for-bridges)_00, the INFO is RST Root=8192/51 which is the root core1 switch with its ID listed with a cost of 0. Should I bee seeing this in my packet captures?
Portfast and bpduguard on the port would be fine. That offers the fast transition to forwarding state and protection for when someone (intentionally or not) plugs another switch into your network. I wouldn't enable bpdufilter unless there is a specific need for it (just because of potential switching loops that can occur when someone does something they're not supposed to....).
first of all - you shouldn't see an end device like PC generating STP messages at all. You should configure the port as access port by using command:
switchport mode access
on the port where end stations are connected.
when I do a show spanning-tree vlan xx I see desktop ports listed here is this correct? Should I not just see the ports that are connecting the switches, i.e. the forwarding port, root port and blocked ports?
Well you will see that every end device will be listed as Designated (Desg) and they will have forwarding status (FWD).
Question We run asr9001 with XR 6.1.3, and we have a very long delay to
login w/ SSH 1 or 2 to the device compare to IOS device. After
investigation, the there is 1s delay between the client KEXDH_INIT and
the server (XR) KEXDH_REPLY. After debug ssh serv...
Introduction The purpose of this document is to demonstrate the Open
Shortest Path First (OSPF) behavior when the V-bit (Virtual-link bit) is
present in a non-backbone area. The V-bit is signaled in Type-1 LSA only
if the router is the endpoint of one or ...
Hi, I am seeing quite a few issues with patch install and wanted to
share my experience and workaround to this. Login to admin via CLI, then
access root with the “shell” command Issue “df –h” and you’ll probably
see the following directory full or nearly ...