Link to home
Start Free TrialLog in
Avatar of Dragon0x40
Dragon0x40

asked on

Turn off BPDU on a switchport

I have a 3548 that does not support the command spanning-tree bpdufilter enable

If the 3548 is installed and connected to an upstream switch that is running bpduguard then the port will be shut down.

I don't believe that switchport mode access will prevent bpdus from being sent out the port.

Is there another way to stop bpdus being sent out a port on the 3548 other than the unavailable command of spanning-tree bpdufilter enable

I have to get management approval and write a change request to turn off bpduguard on the production switch and that will take too much time.

Could I just turn off stp?

This is a temp switch to allow techs to hook up multiple computers for configuration.

STP off could cause a loop if they plug into another switch which could be very bad.
Avatar of rochey2009
rochey2009
Hi,

Which version of IOS are you running?

http://www.cisco.com/en/US/docs/switches/lan/catalyst2900xl_3500xl/release12.0_5_wc7/2900-3500xl/ol256203.html#wp687917

The link suggests bpdu filtering is allowed on this switch.

Maybe your IOS needs upgrading.
Avatar of Dragon0x40
Dragon0x40

ASKER

You may be correct that an IOS upgrade or a different switch would allow me to use the bpdu filter command.

My question is if you do not have the bpdu filter command is the only way to not send out bpdus is to turn spanning-tree off?
Avatar of rochey2009
rochey2009
You may be able to configure a mac access-list and block the BPDU's that way. I'm not sure if you can do an out bound access-list though.
ASKER CERTIFIED SOLUTION
Avatar of rochey2009
rochey2009
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial