I would like to get some opinions on the best design when connecting Layer 3 switches (in our case, 6500's) across an ethernet type WAN (basically, point to point fiber).
The way I see it, there are two options. You could configure the interfaces as 'switchports' and then only allow a single VLAN across the port -- although still leave it configured as a trunk and have a native vlan which is not configured on the switch. The problem I see with this design, is that there could still be problems with spanning-tree as you could exchange BPDU's across the link. Unless you block them. Here is an example:
switchport trunk encapsulation dot1q
switchport trunk native vlan 4094
switchport trunk allowed vlan 86
switchport mode trunk
no ip address
ip address 220.127.116.11 255.255.255.252
The other option is to not run the interface as a switchport, and leave it configured as a layer3 interface. In this case, there shouldn't be any problems with spanning-tree. You do lose the flexibility of running another vlan across the interface if for some reason in the future you had to do so (for example, in a disaster situation).
So, with all that being said, what is the best practice in these types of situations?
We are pleased to announce availability of Beta software for 16.6.3.
16.6.3 will be the second rebuild on the 16.6 release train targeted
towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are
looking for early feedback from customers befor...
Introduction Featured Speakers Luis Espejel is the Telecommunications
Manager of IENova, an Oil & Gas company. Currently he works with Cisco
IOS® and Cisco IOS XE platforms, and NX to some extent. He has also
worked as a Senior Engineer with the Routing P...
In this session you can learn more about Layer 3 multicast and the best
practices to identify possible threats and take security measures. It
provides an overview of basic multicast, the best security practices for
use of this technology, and recommendati...