mikey250
asked on
STP/PVST+/RSTP+ & MST
Hi Im aware of the following:
STP 802.1d/PVST - Functions a '1 Root Bridge per network':
1. What if there was 2 networks - ?
2. Cannot be configured on Cisco switches (What then) - ?
3. I thought this STP 802.1d was the standard STP - ?
PVST+ - spanning-tree mode pvst:
4. Means each vlan has its own 'root bridge' by adding priorities for each separate vlan which can also achieve some load-balancing:
int fa0/x,
spanning-tree vlan x port-priority 16 or 32 or 48 etc etc upto 128 or leave as default of 128 - ?
RSTP/Rapid-pvst+/802.1w - spanning-tree mode rapid-pvst:
5. Does this mean automatically each individual vlan will have its own 'root bridge' although No4 has 'priorities' added manually - ?
MST/802.1s:
int fa0/x
spanning-tree mode mst
spanning-tree mst configuration
name apollo
revision 10
instance 1 vlan 1, 10-20
instance 2 vlan 30, 40-50, 70
6. Vlans that span different regions, so Im assuming this means London, Cardiff, Scotland, or Usa etc ?
7. Can anyone advise on my interpretation as I always get confused with which is which - ?
STP 802.1d/PVST - Functions a '1 Root Bridge per network':
1. What if there was 2 networks - ?
2. Cannot be configured on Cisco switches (What then) - ?
3. I thought this STP 802.1d was the standard STP - ?
PVST+ - spanning-tree mode pvst:
4. Means each vlan has its own 'root bridge' by adding priorities for each separate vlan which can also achieve some load-balancing:
int fa0/x,
spanning-tree vlan x port-priority 16 or 32 or 48 etc etc upto 128 or leave as default of 128 - ?
RSTP/Rapid-pvst+/802.1w - spanning-tree mode rapid-pvst:
5. Does this mean automatically each individual vlan will have its own 'root bridge' although No4 has 'priorities' added manually - ?
MST/802.1s:
int fa0/x
spanning-tree mode mst
spanning-tree mst configuration
name apollo
revision 10
instance 1 vlan 1, 10-20
instance 2 vlan 30, 40-50, 70
6. Vlans that span different regions, so Im assuming this means London, Cardiff, Scotland, or Usa etc ?
7. Can anyone advise on my interpretation as I always get confused with which is which - ?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Qns5. So when connecting a 3 switch or 4 or even 5 switch then, presumably there would always need to be a root secondary if the root primary fails so that 'uplinkfast' would then know what to do - ?
I have 2 types of Bridge Priority:
root bridge
spanning-tree vlan x priority 4096 - As it goes up in multiples of 4096..
&
secondary bridge
spanning-tree vlan x priority 8192...
2nd option commands:
spanning-tree vlan 1-4094 root primary
&
spanning-tree vlan 1-4094 root secondary
Not sure which one to choose or is it either or down to preference - ?
Thanks for the other useful information...!!!
I have 2 types of Bridge Priority:
root bridge
spanning-tree vlan x priority 4096 - As it goes up in multiples of 4096..
&
secondary bridge
spanning-tree vlan x priority 8192...
2nd option commands:
spanning-tree vlan 1-4094 root primary
&
spanning-tree vlan 1-4094 root secondary
Not sure which one to choose or is it either or down to preference - ?
Thanks for the other useful information...!!!
ASKER
Correction the following is based on 'Assuming that all other switches are at default priority, ie the root primary command will set a value of 24576 instead...ie 1 switch set as presumably as VTP Server and the other as VTP Client or is it NOT that and just out of the box set as below:?
2nd option commands:
spanning-tree vlan 1-4094 root primary
&
spanning-tree vlan 1-4094 root secondary
2nd option commands:
spanning-tree vlan 1-4094 root primary
&
spanning-tree vlan 1-4094 root secondary
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Ok I will have a go at this tomorrow as I have 3 2950 L2 switches..if thats ok..!?
I have 3 2950 L2 switches so: A root 4096, B secondary 8192 then and C Im assuming will be left as default..
Im thinking 2 cables would connect to the root A..
1 x cable can be port 1 to port 1 - Main cable
1 x cable can be port 2 to port 2 - would automatically be 'Alternate'
I have 3 2950 L2 switches so: A root 4096, B secondary 8192 then and C Im assuming will be left as default..
Im thinking 2 cables would connect to the root A..
1 x cable can be port 1 to port 1 - Main cable
1 x cable can be port 2 to port 2 - would automatically be 'Alternate'
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Oh ok.. Will set this up tomorrow thanks for that!!!!!!!!:)
ASKER
Morning Im am just setting up all 4 of my L2.
ASKER
Hi What I did was just set up the following as: L2 switches are all 12 port:
Switch A - Vtp Server
Port 1 connects to Port1 Switch B
Port 12 connects to Port 12 Switch C
Switch B - Transparent
Port 10 connects to Port 10 Switch C
Port 11 connects to Port 11 Switch C
Switch C - Transparent
Port 10 connects to Port 10 Switch B
Port 11 connects to Port 11 Switch B
Switch A - sh spanning-tree:
Int Role Sts Cost Prior.Nbr Type
fa0/1 Desg Fwd 19 128.1 P2p
fa0/12 Desg List 19 128.12 P2p
Switch B - sh spanning-tree:
Int Role Sts Cost Prior.Nbr Type
fa0/1 Root Fwd 19 128.1 P2p
fa0/10 Desg Fwd 19 128.10 P2p
fa0/11 Desg Fwd 19 128.11 P2p
Switch C - sh spanning-tree:
Int Role Sts Cost Prior.Nbr Type
fa0/10 Altn Blk 19 128.10 P2p
fa0/11 Aln Blkt 19 128.11 P2p
fa0/12 Root Fwd 19 128.12 P2p
I see that Switch 12 was in 'listening' mode - All good
I see that Switch B port 1 was in 'Root' mode - All good
I see that Switch C port 10 & 11 by default were in 'Altn' mode and obviously port 12 was in 'Root' mode.
After confirming the above I can then for 'Admin order', then complete Switch A VTP Domain, Password & pruning & md5 then change both
Qns1. Switch B & C from Transparent to Client. Then continue other configurations for pc's server etc - ?
Qns2. As another backup so that 'NO' superior remote or Local switch tries to 'hack in' for example I could now add:
spanning-tree backbonefast - ?
Switch A - Vtp Server
Port 1 connects to Port1 Switch B
Port 12 connects to Port 12 Switch C
Switch B - Transparent
Port 10 connects to Port 10 Switch C
Port 11 connects to Port 11 Switch C
Switch C - Transparent
Port 10 connects to Port 10 Switch B
Port 11 connects to Port 11 Switch B
Switch A - sh spanning-tree:
Int Role Sts Cost Prior.Nbr Type
fa0/1 Desg Fwd 19 128.1 P2p
fa0/12 Desg List 19 128.12 P2p
Switch B - sh spanning-tree:
Int Role Sts Cost Prior.Nbr Type
fa0/1 Root Fwd 19 128.1 P2p
fa0/10 Desg Fwd 19 128.10 P2p
fa0/11 Desg Fwd 19 128.11 P2p
Switch C - sh spanning-tree:
Int Role Sts Cost Prior.Nbr Type
fa0/10 Altn Blk 19 128.10 P2p
fa0/11 Aln Blkt 19 128.11 P2p
fa0/12 Root Fwd 19 128.12 P2p
I see that Switch 12 was in 'listening' mode - All good
I see that Switch B port 1 was in 'Root' mode - All good
I see that Switch C port 10 & 11 by default were in 'Altn' mode and obviously port 12 was in 'Root' mode.
After confirming the above I can then for 'Admin order', then complete Switch A VTP Domain, Password & pruning & md5 then change both
Qns1. Switch B & C from Transparent to Client. Then continue other configurations for pc's server etc - ?
Qns2. As another backup so that 'NO' superior remote or Local switch tries to 'hack in' for example I could now add:
spanning-tree backbonefast - ?
ASKER
Correction:
I see that Switch A 12 was in 'listening' mode - All good
I see that Switch A 12 was in 'listening' mode - All good
ASKER
By the way I switch the following:
Switch A
spanning-tree vlan 1 priority 4096
Switch B
spanning-tree vlan 1 priority 8192
Switch C
spanning-tree vlan 1 priority 12288
Qn1. I presume this was correct ?
Switch A
spanning-tree vlan 1 priority 4096
Switch B
spanning-tree vlan 1 priority 8192
Switch C
spanning-tree vlan 1 priority 12288
Qn1. I presume this was correct ?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Hi Ok thanks for the reminder ie all I need to do is set 'root & secondary root' and leave others as default setting 32768..
You say 'I would have connected as triangle' - What do you mean as Im only using 3 switches in a triangle - ?
You say if using VTP then you would normally have 2 VTP Servers - I didn't realise that.... Although then again that would make sense as Im assuming after setting 'root & secondary root' then yes you would be right - ?
I agree that as long as all nodes attached to this single switch and on 'SAME VLAN' then yes 'Transparent' would be ok......but if vlans span more than 1 switch then 'Transparent' would not fit.....
bpduguard - Yes I was planning on adding 'spanning-tree guard root' - On Switch A/Vtp Server ports 1 & 12 as they are the 'Uplinkfast'...and presumably NOT on the 'root ports' connected to Switch A ports 1 & 12... - ?
- Those ports that are NOT 'spanning-tree guard root' - Can be set on each 'Interfaces as 'spanning-tree bpduguard enable OR 'Global as 'spanning-tree portfast bpduguard' - ......to automatically be put on all other ports instead of adding each one manually....
Will not add 'spanning-tree bpdufilter enable' - as this stops the 'tx & rx'...of DTP traffic, unless required for some reason....
You say 'I would have connected as triangle' - What do you mean as Im only using 3 switches in a triangle - ?
You say if using VTP then you would normally have 2 VTP Servers - I didn't realise that.... Although then again that would make sense as Im assuming after setting 'root & secondary root' then yes you would be right - ?
I agree that as long as all nodes attached to this single switch and on 'SAME VLAN' then yes 'Transparent' would be ok......but if vlans span more than 1 switch then 'Transparent' would not fit.....
bpduguard - Yes I was planning on adding 'spanning-tree guard root' - On Switch A/Vtp Server ports 1 & 12 as they are the 'Uplinkfast'...and presumably NOT on the 'root ports' connected to Switch A ports 1 & 12... - ?
- Those ports that are NOT 'spanning-tree guard root' - Can be set on each 'Interfaces as 'spanning-tree bpduguard enable OR 'Global as 'spanning-tree portfast bpduguard' - ......to automatically be put on all other ports instead of adding each one manually....
Will not add 'spanning-tree bpdufilter enable' - as this stops the 'tx & rx'...of DTP traffic, unless required for some reason....
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Hi, Yes the following is:
Switch A - Is the Root Bridge
Switch B - Is the secondary
Switch C - Is Client
I thought you said yesturday that when making use of 'Altn & Backup' that instead of having traffic pointing in the direction of Switch B to A that I could instead have it pointing from Switch C to A. Oh yes I see what you mean I should have put the 'secondary root' on Switch C instead of Switch B....!!!
Yes I understand that the 2 VTP Servers are for fault-tolerance.../resilie
Yes 'bpduguard' will be on user edge ports or pc's servers or any device.. & 'root guard' would be only on the 'uplink ports'...?
CCNA...as had some experience but since economic crisis around the world I need to pass certifications to get back into employment....
Switch A - Is the Root Bridge
Switch B - Is the secondary
Switch C - Is Client
I thought you said yesturday that when making use of 'Altn & Backup' that instead of having traffic pointing in the direction of Switch B to A that I could instead have it pointing from Switch C to A. Oh yes I see what you mean I should have put the 'secondary root' on Switch C instead of Switch B....!!!
Yes I understand that the 2 VTP Servers are for fault-tolerance.../resilie
Yes 'bpduguard' will be on user edge ports or pc's servers or any device.. & 'root guard' would be only on the 'uplink ports'...?
CCNA...as had some experience but since economic crisis around the world I need to pass certifications to get back into employment....
ASKER
I have also gone through the CCNP...but not certified so starting from beginning as been trying to put my limited on the job practical experience together first as bought equipment from ebay. Later once practical upto scratch then I will evolve to using: GNS3...!
ASKER
Qns1. Ive just looked at my 'triangle' again and I think I did not need to remove 'secondary root' from Switch B as all I needed to do was remove 2nd cable port 11 and connect between Switch C to Switch A...?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Yes Ive read my instructions wrong.. It states the following:
Root Guard - Ensures that the port on which it is enable is the 'Designated ports' - So I would disregard ports 1 & 12 which link to up other 2 switches B & C and put 'spanning-tree guard root' on all other Designated ports...!
When reading about this it has been confusing thats why I needed assistance.... !!!
What about my questions on previous thread: 3705311 - ?
Root Guard - Ensures that the port on which it is enable is the 'Designated ports' - So I would disregard ports 1 & 12 which link to up other 2 switches B & C and put 'spanning-tree guard root' on all other Designated ports...!
When reading about this it has been confusing thats why I needed assistance.... !!!
What about my questions on previous thread: 3705311 - ?
Can you restate them?
ASKER
Hi, I did originally have the following:
Qns1.
Switch A - Is the Root Bridge
Switch B - Is the secondary root
Switch C - Is Client
Then 'YOU' said - Sorry I misread your topology. I see you have triangle but you've doubled up on the ports between B and C.
What I should do is remove that B and C cable and put between Switch C port 11 to Switch A port 11 - ?
If the above is correct does that mean my 'Secondary root' should should be on Switch C and NOT Switch B, Im assuming so - ?
Yes I understand that the 2 VTP Servers are for fault-tolerance.../resilie
- 'bpduguard' will be on user edge ports or pc's servers or any device
- 'root guard' would be on the 'Designated ports' 'NOT' the ports connecting to Switch B & C - ?
Qns1.
Switch A - Is the Root Bridge
Switch B - Is the secondary root
Switch C - Is Client
Then 'YOU' said - Sorry I misread your topology. I see you have triangle but you've doubled up on the ports between B and C.
What I should do is remove that B and C cable and put between Switch C port 11 to Switch A port 11 - ?
If the above is correct does that mean my 'Secondary root' should should be on Switch C and NOT Switch B, Im assuming so - ?
Yes I understand that the 2 VTP Servers are for fault-tolerance.../resilie
- 'bpduguard' will be on user edge ports or pc's servers or any device
- 'root guard' would be on the 'Designated ports' 'NOT' the ports connecting to Switch B & C - ?
DP RP
A (root) --------------- B (secondary root)
DP | | DP
| |
----------- C -----------
RP AP
RP = root port, AP = Alternate Port which is blocking, DP = Designate Port
http://www.cisco.com/en/US/tech/tk389/tk621/technologies_tech_note09186a00800ae96b.shtml
Have a look at the link for an application of root guard.
A (root) --------------- B (secondary root)
DP | | DP
| |
----------- C -----------
RP AP
RP = root port, AP = Alternate Port which is blocking, DP = Designate Port
http://www.cisco.com/en/US/tech/tk389/tk621/technologies_tech_note09186a00800ae96b.shtml
Have a look at the link for an application of root guard.
ASKER
Hi I can see your diagram in this thread above although no 2nd Altn cable between C & A although it is an example.!!!
I do realise all ports from Root Bridge are Designated ports and those ports from Switch B & C connecting to Switch A are Root ports. Ive always understood that..!!! Please bare with me..!:)
Ive looked at the url although somewhat confusing but I do understand, it is just get the practical right...
This is what I have below on my switches below what you think:
Switch A - Vtp Server (Root Bridge)
spanning-tree uplinkfast
spanning-tree vlan 1 priority 4096
Ports 2 - 10 - spanning-tree guard root
Port 1 connects to Switch B Port 1 (Main - Uplink) (Desg)
Port 12 connects to Switch C Port 12 (secondary - Uplink) (Desg)
Port 11 connects to Switch C Port 11 (Altn) (Desg)
Switch B - Vtp Server - (2nd Root Bridge)
spanning-tree uplinkfast
spanning-tree vlan 1 priority 8192
Ports 2 - 9 & 11 & 12- spanning-tree guard root
Port 1 connects to Switch A Port 1 (Rp)
Port 10 connects to Switch C Port 10 (Desg)
Switch C - Client
spanning-tree uplinkfast
spanning-tree vlan 1 priority 12288 - Although could leave as default 32768..
Ports 1 - 9 - spanning-tree portfast
Ports 1 - 9 - spanning-tree bpduguard enable
Port 10 connects to Switch B Port 10 (Altn)
Port 11 connects to Switch A Port 11 (Rp)
Port 12 connects to Switch A Port 12 (Altn)
--------------------------
Switch A - sh spanning-tree:
Int Role Sts Cost Prior.Nbr Type
fa0/1 Desg Fwd 19 128.1 P2p
fa0/11 Desg Fwd 19 128.11 P2p
fa0/12 Desg Fwd 19 128.12 P2p
Switch B - sh spanning-tree:
Int Role Sts Cost Prior.Nbr Type
fa0/1 Root Fwd 19 128.1 P2p
fa0/10 Desg Fwd 19 128.10 P2p
Switch C - sh spanning-tree:
Int Role Sts Cost Prior.Nbr Type
fa0/10 Altn Blk 19 128.10 P2p
fa0/11 Root Fwd 19 128.11 P2p
fa0/12 Altn Blk 19 128.12 P2p
I do realise all ports from Root Bridge are Designated ports and those ports from Switch B & C connecting to Switch A are Root ports. Ive always understood that..!!! Please bare with me..!:)
Ive looked at the url although somewhat confusing but I do understand, it is just get the practical right...
This is what I have below on my switches below what you think:
Switch A - Vtp Server (Root Bridge)
spanning-tree uplinkfast
spanning-tree vlan 1 priority 4096
Ports 2 - 10 - spanning-tree guard root
Port 1 connects to Switch B Port 1 (Main - Uplink) (Desg)
Port 12 connects to Switch C Port 12 (secondary - Uplink) (Desg)
Port 11 connects to Switch C Port 11 (Altn) (Desg)
Switch B - Vtp Server - (2nd Root Bridge)
spanning-tree uplinkfast
spanning-tree vlan 1 priority 8192
Ports 2 - 9 & 11 & 12- spanning-tree guard root
Port 1 connects to Switch A Port 1 (Rp)
Port 10 connects to Switch C Port 10 (Desg)
Switch C - Client
spanning-tree uplinkfast
spanning-tree vlan 1 priority 12288 - Although could leave as default 32768..
Ports 1 - 9 - spanning-tree portfast
Ports 1 - 9 - spanning-tree bpduguard enable
Port 10 connects to Switch B Port 10 (Altn)
Port 11 connects to Switch A Port 11 (Rp)
Port 12 connects to Switch A Port 12 (Altn)
--------------------------
Switch A - sh spanning-tree:
Int Role Sts Cost Prior.Nbr Type
fa0/1 Desg Fwd 19 128.1 P2p
fa0/11 Desg Fwd 19 128.11 P2p
fa0/12 Desg Fwd 19 128.12 P2p
Switch B - sh spanning-tree:
Int Role Sts Cost Prior.Nbr Type
fa0/1 Root Fwd 19 128.1 P2p
fa0/10 Desg Fwd 19 128.10 P2p
Switch C - sh spanning-tree:
Int Role Sts Cost Prior.Nbr Type
fa0/10 Altn Blk 19 128.10 P2p
fa0/11 Root Fwd 19 128.11 P2p
fa0/12 Altn Blk 19 128.12 P2p
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Hi, Yes Ive been reading my notes and seen that it said add 'uplinkfast' on access layer switches only...huurraayyyy! So my config is good then ?
Having 'Uplinkfast' on all 3 switches like I did do, can it cause problems ?
Then I think were all done..:)
Having 'Uplinkfast' on all 3 switches like I did do, can it cause problems ?
Then I think were all done..:)
ASKER
So even though Switch A & B are also access layer switches they are not in this case....!?
Yes you are correct. Good luck.
ASKER
Perfect...!!!!!!!!:))
ASKER
Qns1. Uplinkfast - this means to me when there are at least 2 cables being used if one link goes down then it will automatically switch to the other 'Good' cable - ?
Qns2. Can I configure 'IP CEF & FEC' on same cables although I realise upto 8 cables can be used for FEC to provide upto 16Gbs - ?
Qns3. Or for neat & tidy would a Network Admin, make 'Uplinkfast separatee from IP CEF & FEC' - ?
Qns4. Rapid STP - 802.1w - when would this be used or is it down to which company can afford it?
Qns5. Not sure what you mean when you say: A simple 3 switch triangle has 2 useful topologies for 'load-balancing', although I am aware if this 3 switch triangle has 'copper on 1 side to root bridge and fibre on the other then presumably the fibre will be chosen - ?
Qns6. Im also aware I think that if a 3 switch triangle is being used again for example and every connection is using 'copper' then priorities or costs can be used I think although Im not sure of the difference - ?
Qns7. Cisco MST uses 802.1w - Im under the impression that these 'Regions are geographically' located differently although 'YES' configured with 'SAME NAME' - (My main thread was not an exact config of MST but just an example) - ?