Cisco
--
Questions
--
Followers
Top Experts
Wireless bridges extending LAN between 2 buildings with Cisco Catalyst switch 4507 and 2960
  Both HQ and XO are connected via the wireless bridges RF1/RF2 and WiFi1/WiFi2.  The RF wireless bridge is the primary link to XO while the WiFi wireless bridge is the backup link and being shutdown on the HQ switchport level to prevent bridge loop.  The current setup is a manual process for redundancy.
I would like to reconfigure it to allow automatic switch between the multipath wireless bridges without introducing a router in both sites and keeping it in layer 2 24bit-mask broadcast domain.
One of the biggest challenges is that the switchports will be 'UP' status even if the wireless bridges are down for being blocked wirelessly because the wireless bridge APs (ex: RF1, RF2, WiFi1 &Â WiFi2) are still connected to the switchports actively.
Zero AI Policy
We believe in human intelligence. Our moderation policy strictly prohibits the use of LLM content in our Q&A threads.
Use RPVST instead of PVST
spanning-tree mode rapid-pvst
and remove spanning-tree portfast trunk from ports.
Primary link should use lower port number. Additionally, you can configure STP port priority or change STP cost on primary or/and secondary link to make sure that primary link is up (although according to ports on drawing 1Gb wireless bridge should be primary anyway). Problem with manual cost assignment is if port speed is auto negotiated slower link (negotiated speed on interface 100Mb instead of 1Gb) can have better cost to root bridge.
spanning-tree mode rapid-pvst
and remove spanning-tree portfast trunk from ports.
Primary link should use lower port number. Additionally, you can configure STP port priority or change STP cost on primary or/and secondary link to make sure that primary link is up (although according to ports on drawing 1Gb wireless bridge should be primary anyway). Problem with manual cost assignment is if port speed is auto negotiated slower link (negotiated speed on interface 100Mb instead of 1Gb) can have better cost to root bridge.
TY PJ. Â Both switches are currently in rapid-pvst mode. Â The primary link (RF bridge) is on the lower port number gi1/1 (since it is on a chassis, the secondary is on slot 2 port 1, gi2/1). Â On the XO, the primary link (RF bridge) is on gi1/0/1.
I know that the STP cost and priority work differently. Â Can you explain which will be better giving that the HQ switch should be the STP root. Â Can you show the CLI?
What happen when the RF bridge is DOWN (signal being blocked), but the RF1 and RF2 units are still showing 'UP' status on the switchports? Â Will the traffic learn and go to the secondary WiFi bridge? Â Should I setup an IP SLA to ensure the path accessibility?
I know that the STP cost and priority work differently. Â Can you explain which will be better giving that the HQ switch should be the STP root. Â Can you show the CLI?
What happen when the RF bridge is DOWN (signal being blocked), but the RF1 and RF2 units are still showing 'UP' status on the switchports? Â Will the traffic learn and go to the secondary WiFi bridge? Â Should I setup an IP SLA to ensure the path accessibility?
ASKER CERTIFIED SOLUTION
membership
Log in or create a free account to see answer.
Signing up is free and takes 30 seconds. No credit card required.
PJ - Would it be easier to setup a port-channel for both links to become LACP and provide an active-active (HA) load-balancing?
EARN REWARDS FOR ASKING, ANSWERING, AND MORE.
Earn free swag for participating on the platform.
SOLUTION
membership
Log in or create a free account to see answer.
Signing up is free and takes 30 seconds. No credit card required.
Cisco
--
Questions
--
Followers
Top Experts
Cisco PIX is a dedicated hardware firewall appliance; the Cisco Adaptive Security Appliance (ASA) is a firewall and anti-malware security appliance that provides unified threat management and protection the PIX does not. Other Cisco devices and systems include routers, switches, storage networking, wireless and the software and hardware for PIX Firewall Manager (PFM), PIX Device Manager (PDM) and Adaptive Security Device Manager (ASDM).