Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
544
Views
0
Helpful
5
Replies

Problem with pruning between VTP server and VTP transparent

SDWorx_2
Level 1
Level 1

‎02-07-2006 05:37 AM - edited ‎03-03-2019 01:43 AM

We are installing a new switch in our infrastructure. This is a switch that cannot be joined in our VTP domain because the VLAN's we create on this switch may not be visible on other switches.

So our VTP server is a Cat 6500 running CatOS ver6.3. The new switch in transparent mode runs IOS 12.2SX.

Both switches are connected via ISL trunks.

VTP pruning is enabled on the VTP server.

Now the problem is that VLAN10 (that is configured on the VTP server, and manually on the transparent) is pruning on the trunk between those 2 switches. Because of this no broadcasts are received on the new switch, and this is our problem

We found out that you can enable per interface and per vlan pruning on the IOS switch, but as fare as we could find, this was not possible on the Cat OS.

Anyone an idea how we can solve this problem without having the new server to be a VTP client?

An other idea could be to disable VTP pruning on VLAN 10 on the VTP server, but due to to impact on a production network, I prefer an other solution.

Many thanks.

Koen

Labels:
0 Helpful
5 Replies 5

nethelper
Level 3
Level 3

‎02-07-2006 06:01 AM

Hello Koen,

what are you trying to accomplish ? If the switch is configured in VTP transparent mode, it effectively becomes a standalone switch, and does not exchange any VLAN information with any other switch (except for relaying VTP advertisments out the trunk ports, if your run VTP version 2).

Why would you want broadcasts to be exchanged between both switches, while keeping the VLAN information invisible to the rest of the network ? Or do you want just certain VLANs to be invisible ?

Sorry if I misunderstood your setup, but maybe you can clarify...

Regards,

Nethelper

0 Helpful

glen.grant
VIP Alumni
VIP Alumni

‎02-07-2006 08:38 AM

You can definetly prune on a catos box , all you need to do is use the "clear trunk " command to include the vlan you want to prune .

0 Helpful

Francois Tallet
Level 7
Level 7

‎02-07-2006 10:51 AM

Hi Koen,

I used to be familiar with VTP's state machines but it's been a while... CatOS and IOS are behaving sligthly differently on the top of that:-(

I could remember that VTP pruning was able to determine when the trunk was coming up whether the remote neighbor was able to run pruning or not. If so, then it would expect some joins for the required vlans. It looks like in your case, the switch running VTP pruning is expecting some joins from its transparent neighbor (weird).

Could it be that you have another switch running VTP behind the transparent switch? Could you try to configure your transparent switch as a server but in a different domain? That should achieve roughly the same functionality and you can explicitly disable pruning. After the change, make sure to bring the trunk down and up again.

Sorry for the approx answer, a real VTP expert should be able to answer exactly your question with the details you gave.

Regards,

Francois

0 Helpful

SDWorx_2
Level 1
Level 1
In response to Francois Tallet

‎02-16-2006 07:26 AM

Hi all,

Many thanks for the responses and my apologies for responding so late. but due to a lot of work I was not able to update this post.

There is one VTP server in our network, all other switches are clients. Now the reason that we configured the new server as transparent is due to security reasons. All VLAN's added on the new switch may not be visible on the other switches in the network. But 2 VLAN's configured on the "old" switch should be know on the new switch.. I know this seams complex, but is in this way the setup is most secure for us.

Now we have found a (temporary?) solution, and this is that we disabled pruning for that particular VLAN. This causes many more broadcast on the network, but the VLAN is now accessible from the new switch.

We've been told that VTP pruning is not that popular. The gain is not really spectacular. Anyone that shares this thinking?

Thanks again.

Koen

0 Helpful

kweil
Level 1
Level 1
In response to SDWorx_2

‎02-16-2006 11:45 AM

Hi Koen,

I think you may be getting confused between VTP pruning and manually pruning VLANs from trunk links. VTP pruning is not that popular because best-practices dictate that if a VLAN is not used on an edge switch, the VLAN should be manually pruned from the trunk link in order to avoid spanning-tree problems. VTP pruning does NOT prevent spanning-tree from functioning on certain VLANs on a switch.

It's hard for me to tell exactly what you are doing from the e-mail thread, but if I am reading this correctly, you have 2 VLANs (say 10,11) that need to be configured on the transparent switch so that communication can be maintained to the rest of the network. If you are creating new separate VLANs (say 12,13), these would be created manually on the transparent switch, along with the existing two VLANs.

One thing that is confusing me a bit is how are you handling Layer 3 for the new VLANs without propagating them to an upstream 6500/MSFC? Is the transparent switch also L3?

0 Helpful
Customers Also Viewed These Support Documents