Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
611
Views
0
Helpful
6
Replies

STP config question

torroba72
Level 1
Level 1

‎05-08-2012 05:51 AM - edited ‎03-07-2019 06:34 AM

Morning all,

I'm fairly new to STP and have a few questions.  Right now I have two 6509's connected via an etherchannel running PVST, core1 is the root and core2 has the designated root port list it should.  When I do packet captuers on my production internet vlan I see my workstation generating a ton of STP packets.  First should I be seeing this and second when I do a show spanning-tree vlan xx I see desktop ports listed here is this correct?  Should I not just see the ports that are connecting the switches, i.e. the forwarding port, root port and blocked ports?

Thanks,

Tim

Labels:
0 Helpful
6 Replies 6

Edwin Summers
Level 3
Level 3

‎05-08-2012 06:01 AM

Your workstation is generating STP packets?  Do you have interfaces on your workstation bridged?

Ports facing your devices should still be in the forwarding state, and are likely "designated" ports for those segments.  If you see a root port facing your workstations, you know you have something fun going on. 

Ed

0 Helpful

torroba72
Level 1
Level 1
In response to Edwin Summers

‎05-08-2012 07:24 AM

Well what I'm seeing when I run wireshark is the normal web traffic and when I see the STP packets the source is my switchport ID(not my laptop MAC) Cisco_aa:xx:xx and the dest is Spanning-Tree-(for-bridges)_00, the INFO is RST Root=8192/51 which is the root core1 switch with its ID listed with a cost of 0.  Should I bee seeing this in my packet captures?

0 Helpful

Edwin Summers
Level 3
Level 3
In response to torroba72

‎05-08-2012 08:26 AM

Yes, you'll see this on your captures as the port is participating in spanning tree.  Unless you explicitly disable it (such as by turning on bpdufilter), the switch will still send bpdus.

0 Helpful

torroba72
Level 1
Level 1
In response to Edwin Summers

‎05-08-2012 08:29 AM

Thanks!  Is it ok to leave it like it is or turn on the bpdufilter?  I have most of my ports seutp with portfast and bpduguard enable right now.

Thanks again!

Tim

0 Helpful

Edwin Summers
Level 3
Level 3
In response to torroba72

‎05-08-2012 09:33 AM

Portfast and bpduguard on the port would be fine.  That offers the fast transition to forwarding state and protection for when someone (intentionally or not) plugs another switch into your network.  I wouldn't enable bpdufilter unless there is a specific need for it (just because of potential switching loops that can occur when someone does something they're not supposed to....).

Good luck!

Ed

0 Helpful

Jan Hrnko
Level 4
Level 4

‎05-08-2012 06:42 AM

Hi Tim,

 First should I be seeing this

first of all - you shouldn't see an end device like PC generating STP messages at all. You should configure the port as access port by using command:

switchport mode access

on the port where end stations are connected.

when I do a show spanning-tree vlan xx I see desktop ports listed here  is this correct?  Should I not just see the ports that are connecting  the switches, i.e. the forwarding port, root port and blocked ports?

Well you will see that every end device will be listed as Designated (Desg) and they will have forwarding status (FWD).

Best regards,

Jan

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card