Solved

Err-disabled stat on cisco switch port

Posted on 2007-03-19
4
4,908 Views
Last Modified: 2008-04-05
I am intermittently having ports shut down on switches throughout my company. The switches I have are Cisco 3560 catalyst.  When I check the port it is in an err-disable state.  I can bring the port up by doing the shutdown no shutdown command on the interface.  When I check the status on the port to see why it went down the reason listed is bpduguard.  Bpduguard is enabled on the port. But my understanding was bpduguard detected bpdu packet.  I though bpdu packets only came from devices like switches.  The devices that are connected to the ports that go into the err-disable state are computers (Dell 9200).  Why would the switch think that the computers are sending out bpdu packets.
      
Any insight would be most appreciated.
0
Comment
Question by:SHAX
  • 2
  • 2
4 Comments
 
LVL 50

Expert Comment

by:Don Johnston
Comment Utility
SOMETHING caused a BPDU to come in that port. It could be that a user connected an unauthorized switch or maybe a cable got connected so that a loop was created.

The only time I've seen a computer generate a BPDU is if has multiple NIC's and it is configured to bridge the traffic between the NICs.

It sounds like some investigating is in order. :-o
0
 

Author Comment

by:SHAX
Comment Utility
*****Updated info for original post.*****  The NIC that we are seeing the BPDU's from are the Intel 82566 DC Integrated NIC in the Dimension 9200 desktop models.  As to the comment by donjohnson, the users are not plugging in unauthorized switches, nor have any cabling changes been made.  Thanks for the suggestion, but that isn't the case in this situation.  Any other comments and suggestions will be welcome.

Thanks
0
 
LVL 50

Assisted Solution

by:Don Johnston
Don Johnston earned 500 total points
Comment Utility
Do these PC's have wireless cards? If so, then the BPDU's could be arriving at the PC over the wireless link and the PC then passes it on to the switch.

The only way a PC will send out BPDUs:

1) There is more than on network interface on the PC and the PC is bridging the NICs.
2) The PC has a protocol analyzer and has previously captured BPDUs and is now sending them back out.
3) The PC is running a bridging service thereby making it a bridge.

It's got to be one of those.
0
 

Accepted Solution

by:
SHAX earned 0 total points
Comment Utility
Looks like the problem was a magic packet/wake on lan setting in the network card.  Once that was turned off I have not seen any more problems
0

Featured Post

Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

Join & Write a Comment

I see many questions here on Experts Exchange regarding switch port configurations and trunks. This article is meant for beginners in the subject to help to get basic knowledge about Virtual Local Area Network (VLAN (http://en.wikipedia.org/wiki/Vir…
I eventually solved a perplexing problem setting up telnet for a new switch.  I installed a new Cisco WS-03560X-24P switch connected to an existing Cisco 4506 running a WS-X4013-10GE Sup II-Plus. After configuring vlans and trunking,  I could no…
In this seventh video of the Xpdf series, we discuss and demonstrate the PDFfonts utility, which lists all the fonts used in a PDF file. It does this via a command line interface, making it suitable for use in programs, scripts, batch files — any pl…
This tutorial demonstrates a quick way of adding group price to multiple Magento products.

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

8 Experts available now in Live!

Get 1:1 Help Now