Solved

Cisco Loop Guard Confusion

Posted on 2010-09-24
6
1,204 Views
Last Modified: 2012-05-10
I have problems understanding loopguard. Firstly why would you put loop guard on a root port which is a forwarding state anyway??
Secondly when we put loop guard on what happens when when the neighboring switch legitmately goes down and the obviously the blocking port
stops recieving bpdu's from the switch that has gone down it then it goes into the loop inconsistent state rather than into a forwarding state for the segment does it not
take away the failover functionality of spanning tree requiring manual intervention??
0
Comment
Question by:BarepAssets
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
6 Comments
 
LVL 28

Accepted Solution

by:
mikebernhardt earned 500 total points
ID: 33756718
If the neighboring switch goes down, the link will go down with it (not just the bpdus) and loop guard won't interfere with normal spanning tree.
0
 
LVL 2

Expert Comment

by:jbrmiller
ID: 33757074
Loopguard doesn't use bpdus, so, it's not related to spanning tree.
Loopguard sends keepalives through all ports on the switch, and this frames are ignored by all neighborging switches, and are not forwarded. But, if a loop is created, and the switch receives his own keepalive in any port, the port is err-disabled.

the protocol that's related to spanning tree is bpduguard, and is intented for other purposes.
0
 

Author Comment

by:BarepAssets
ID: 33759892

thaks for the replies

 mike that explains the link issue what about why do we put loop guard on root ports which are forwarding anyway

jbrmiller i think you may confusing loop guard with udld that is the protocol that is not related to spanning tree and sends keepalives loop guard is part of spanning tree tools and monitors bpdus as far as my study so far says anyway  
bpdu guard is for making sure if you mistakenly connect a switch to portfast enabled port it does not go straight away into forwarding state bypassing listening learning etc possible creating a loop it error disables on reciept of bpdu if enabled on interface
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 28

Assisted Solution

by:mikebernhardt
mikebernhardt earned 500 total points
ID: 33771635
The idea is to put it on all ports facing the root switch. The switch knows where the root is. If it starts receiving BPDUs from a port other than the one facing the root, it will assume that a loop has formed. In a failure scenario it's possible that the root port will no longer be the root port due to a spanning tree change even though the link is up. Now that port needs to have loop guard in case a loop isn't caught in time. So it's best practice to do it.

And let me tell you personal experience, a spanning tree loop on a modern high-speed network is a really bad thing.
0
 
LVL 28

Expert Comment

by:mikebernhardt
ID: 33771644
>The idea is to put it on all ports facing the root switch.

I mean, all ports with a potential path to the root switch, whether blocking or forwarding.
0
 

Author Closing Comment

by:BarepAssets
ID: 33839033
answere
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Security is one of the biggest concerns when moving and migrating your data from your on-premise location to the Public Cloud.  Where is your data? Who can access it? Will it be safe from accidental deletion?  All of these questions and more are imp…
Microservice architecture adoption brings many advantages, but can add intricacy. Selecting the right orchestration tool is most important for business specific needs.
Viewers will learn how to properly install and use Secure Shell (SSH) to work on projects or homework remotely. Download Secure Shell: Follow basic installation instructions: Open Secure Shell and use "Quick Connect" to enter credentials includi…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…

691 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question