?
Solved

BACKBONEFAST & ROOT GUARD

Posted on 2011-11-01
6
Medium Priority
?
611 Views
Last Modified: 2012-05-12
Qns1. Does 'backbonefast' go on all switches?

L2 12 port switch:
Qns2. I have a 3 switch triangle and this is the following:

Switch A (Vtp Server 4096)

Switch B (Vtp Server 8192)

Switch C (Vtp Client 32768) (Access Switch)

I have already connected Switch A port 1 to Switch B port 1
I have already connected Switch A port 12 to Switch C (Access Switch)
I have also added on the 'spare unused ports - spanning-tree guard root'.

Qns2.  Is adding 'spanning-tree guard root' on Switch A spare ports correct as Im assuming when connecting up a Switched network like this these ports 'WOULD' actually be empty unless used for management purposes - ?
0
Comment
Question by:mikey250
  • 3
  • 3
6 Comments
 
LVL 26

Accepted Solution

by:
Soulja earned 2000 total points
ID: 37065043
Qns1. Does 'backbonefast' go on all switches?

Yes, on all three switches

Qns2.  Is adding 'spanning-tree guard root' on Switch A spare ports correct as Im assuming when connecting up a Switched network like this these ports 'WOULD' actually be empty unless used for management purposes - ?


Guard root is placed on ports connecting to switches where you don't want a superior BPDU to be received. In your case above you would not enable it on any of the uplink ports. Now if you daisy chained another switch off of C, then you would enable it on the port connecting to the new switch hanging off of switch C.
0
 

Author Comment

by:mikey250
ID: 37065397
Hi,  Qns1. Ok all good Ive added it already..!

Qns1. Yes as you say below in my case Ive already connected switches Vtp Server A, B & Access C.  So I presume you mean that the spare ports not used and nothing plugged in on Switches A & B, can be left or added to an unused vlan for added security - ?

Qns2. If I then wish to add extra 'Access switches I could then connect to a spare port on Switch C, but this time adding - 'guard root' & so on - ?

'Guard root is placed on ports connecting to switches where you don't want a superior BPDU to be received. In your case above you would not enable it on any of the uplink ports. Now if you daisy chained another switch off of C, then you would enable it on the port connecting to the new switch hanging off of switch C.
0
 
LVL 26

Assisted Solution

by:Soulja
Soulja earned 2000 total points
ID: 37065437
Qns1. Yes as you say below in my case Ive already connected switches Vtp Server A, B & Access C.  So I presume you mean that the spare ports not used and nothing plugged in on Switches A & B, can be left or added to an unused vlan for added security - ?

Yes, just shut them down and/or place in a non usable vlan.

Qns2. If I then wish to add extra 'Access switches I could then connect to a spare port on Switch C, but this time adding - 'guard root' & so on - ?
Yes, you are correct.
0
Veeam and MySQL: How to Perform Backup & Recovery

MySQL and the MariaDB variant are among the most used databases in Linux environments, and many critical applications support their data on them. Watch this recorded webinar to find out how Veeam Backup & Replication allows you to get consistent backups of MySQL databases.

 

Author Comment

by:mikey250
ID: 37065482
Thanks for that, this 'switching' is more complicated than I thought....Im getting it now....!!once again appreciated..!:)
0
 
LVL 26

Expert Comment

by:Soulja
ID: 37065516
Spanning tree is always a headache no matter how long you deal with switches. Many companies are going to layer 3 to the access layer and relying on dynamic routing for path convergence.
0
 

Author Closing Comment

by:mikey250
ID: 37068644
Sound advice..!!
0

Featured Post

NEW Veeam Agent for Microsoft Windows

Backup and recover physical and cloud-based servers and workstations, as well as endpoint devices that belong to remote users. Avoid downtime and data loss quickly and easily for Windows-based physical or public cloud-based workloads!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

AWS has developed and created its highly available global infrastructure allowing users to deploy and manage their estates all across the world through the use of the following geographical components   RegionsAvailability ZonesEdge Locations  Wh…
Security is one of the biggest concerns when moving and migrating your data from your on-premise location to the Public Cloud.  Where is your data? Who can access it? Will it be safe from accidental deletion?  All of these questions and more are imp…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

850 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question