This Cisco STP feature protects the network from loops that could occur if BPDUs were received on a PortFast port. Because BPDUs should never arrive at these ports, their reception indicates a misconfiguration or a security breach. BPDU Guard causes the port to errordisable upon the reception of these frames.
You can configure BPDU Guard globally to have the feature enabled for all PortFast ports on the system. The command to do this is as follows:
spanning-tree portfast bpduguard
You can also enable the feature at the interface level. Use this command:
spanning-tree bpduguard enable
You can enable this feature at the interface level even if PortFast is not enabled on the port. Once again, the receipt of a BPDU causes the port to error-disable.
skip to main |
skip to sidebar
Visitor Number
Blog Archive
-
▼
2009
(47)
-
▼
October
(27)
- MPLS Label - Header
- KnowledgeNet MPLS Lab in GNS3
- CCIE R&S Certification v4.0
- GNS3 High Processor Usage
- Advantages of MPLS
- MPLS - Multi Protocol Label Switching
- Logging and and using syslog
- Domain Name System
- Web Cache Communication Protocol
- DHCP with Cisco Devices
- Network Time Protocol
- Network Address Translation
- Ethernet
- EtherChannel
- VTP pruning
- VLAN trunking
- Unicast flooding
- Storm Control
- BPDU Guard
- Root Guard
- Unidirectional Link Detection
- Loop Guard
- 802.1s Multiple Spanning Tree
- 802.1w Rapid Spanning Tree Protocol
- Cisco-proprietary enhancements to 802.1D
- Topology changes Notification (TCN)
- Spanning Tree Protocol
-
▼
October
(27)
No comments:
Post a Comment