after trying to understand VTP pruning I thought to test it physically.
I have a infrastructure with three switches (2x CAT2960 with IOS 12.2 (53) SE1 and 1x CAT 3560 with IOS 12.2 (55) SE6) connected in a line (2960-----3560-----2960), each with one trunk. On every trunk VLAN´s 2 and 3 are allowed. There is an interface for VLAN 3 on each switch and only one interface for VLAN 2 on the 3560 which is root for VLAN´s 2 and 3. The entire network runs VTPv2 and the first 2960 is VTP Server. The third 2960 is connected to my PC with port configuration switchport mode access and switchport access vlan 2. VTP pruning is enabled on the VTP server switch and due to it in the whole network. I´ve mirrored the trunk port on the first 2960 to monitor the traffic which gets through this trunk port.
In my opinion, VTP pruning drops all packets that leave the 3560 on the trunk port connected to the first 2960. The show interfaces pruning command confirms this fact (Vlans pruned for lack of request by neighbor: 2 and Vlan traffic requested of neighbor: 2-3). So broadcasts from my PC to the network should be pruned at this port. But in the mirrored port there are still broadcast packets from my PC visible. And after clearing the mac address-table, the MAC from my PC appears.
I have tried different configurations belonging to root´s for VLAN´s and the VLAN 2 interface. The show interfaces pruning command output is logical every time but the mac address always appears in the mac add table on the first 2960.
That doesn´t make sense to me. In this example there is a correct configuration (command show interfaces pruning) but there are no consequences belonging to the network.
We are pleased to announce availability of Beta software for 16.6.3.
16.6.3 will be the second rebuild on the 16.6 release train targeted
towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are
looking for early feedback from customers befor...
Introduction Featured Speakers Luis Espejel is the Telecommunications
Manager of IENova, an Oil & Gas company. Currently he works with Cisco
IOS® and Cisco IOS XE platforms, and NX to some extent. He has also
worked as a Senior Engineer with the Routing P...
In this session you can learn more about Layer 3 multicast and the best
practices to identify possible threats and take security measures. It
provides an overview of basic multicast, the best security practices for
use of this technology, and recommendati...