Professional Documents
Culture Documents
Spanning Tree Enhancements
Spanning Tree Enhancements
Spanning Tree Enhancements
Outline
Introduction
BPDU guard Root guard
BPDU filter
Loop guard
STP enhancements
STP is designed to never create a loop.
Based on assumptions, that sometimes might not be
valid. BPDU guard, Root guard, BPDU filter, and loop guard:
Filter sent/received BPDU Control network reactions when unexpected topology
changes occur
STP enhancements
Supported by: PVST+ MST PVRST+
BPDU guard
Shuts down a Portfast enabled interface when a BPDU
is received.
BPDU guard
Packet tracer demo
Root guard
Forces an interface to become designated in order to
Root guard
Root guard
Root guard
With root guard enabled:
Root guard
Packet tracer demo
BPDU filter
Prevents switches from sending BPDU on Portfast-
On the router: R(config)# bridge 1 protocol ieee R(config)# int fa0/0 R(config-if)# bridge-group 1
On the switch: S# show spanning-tree int fa0/1 portfast Disabled We can use also debug spanning-tree bpdu
BPDU filter
Demo using real equipement
Loop guard
Used to prevent bridging loops
STP blocking port erroneously transitions to
forwarding state => bridging loop A blocking port stops receiving bpdu => transitions to forwarding state => bridging loop Loop guard feature : additional check before transitioning a blocking port to the forwarding state (loop inconsistent state)
Enable bpdu filter on fa0/2 on switch2. Fa0/2 on switch3 wont receive bpdu anymore, transitions to forwarding state, => loop
Enable loopguard globally on the switches Spanning-tree loopguard default Bpdu filter enabled on Fa0/2 on Switch2 Fa0/2 on Switch3 will go to loop Inconsistent state