Why would you enable root guard just on your access ports? That doesn't make sense? The answer should be to enable it on the trunk ports facing the other switches as that is where you could possibly hear a "superior" BPDU. If you want to protect your access ports from hearing BPDU's and causing loops or other issues in your topology then you use BPDUguard. It doesn't matter where the optimal placement of the root is, the question states that 5 is the root, so lets answer the question according that. In your CCIE lab, you won't see an optimal or best practices configured topology either, so we cannot question that. If you enable root guard on R3 and R4 trunk ports facing the non root switches, then that will protect R5 from a superior BPDU, therefore maintaining R5 as the root.'
Michael Davis CCIE #26050, CISSP #376023 , ECC C|EH MCSE Webquor Services Pty Limited Suite 504, Level 5 105 Pitt Street Sydney NSW 2000 [email protected] <mailto:[email protected]> Tel: 1300 653 115 Fax: +61 (2) 8905 9224 ITIL® Accredited <http://www.itil-officialsite.com/> ITIL® <http://www.itil-officialsite.com/> is a Registered Trade Mark of the Office of Government Commerce, in the United Kingdom and other countries. P Please consider the environment before printing this email "This communication is intended for the addressed recipient only. It may contain information that is privileged, confidential and/or exempt from disclosure. If you are not the intended recipient, you are notified that any use, disclosure, dissemination or any action taken or admitted to be taken or reliance on it is strictly prohibited. If you have received this e-mail in error, please reply to the sender immediately and delete the document. Except as required by law, Webquor Services Pty. Limited does not represent, warrant and/or guarantee that the integrity of this communication has been maintained. We also do not guarantee that the communication is free of errors, virus, interception or interference, but do assume that the utmost effort and technology has been utilised to ensure that the information is free from such effects². On 15/11/11 3:39 PM, "Pedram Zadeh" <[email protected]> wrote: >Sorry Asif, but I would say your answer is not correct. > >Amit if that is all your topology, just configure it in your access ports. >(However, it is not recommended to have R5 as root in this topology; root >usually should be in middle of your network. R4/R3 are much better for >that; and also for access ports having portfast+bpduguard is better >solution) > >All redundant ports between switches potentially could be root port as I >mentioned in the other posts and shouldn't be configured with root gurad. >2011/11/15 Syed Asif Raza <[email protected]> > >> Enable root guard on interfaces between R3 and R1 R4 and R2. >> >> >> >> >> >> ------------------------------ >> Date: Tue, 15 Nov 2011 08:59:22 +0530 >> Subject: Re: [OSL | CCIE_RS] Rootguard placement >> From: [email protected] >> To: [email protected] >> CC: [email protected]; [email protected]; >>[email protected]; >> [email protected] >> >> >> >> hi guys, >> >> Yes all i want is R5 to be the root and there is no notion of secondary >> root bridges.. >> So now with the below diagram kindly let me know on what interfaces >>should >> root guard be enabled? >> >> >> >> >> >> R5 >> | | >> | | >> | | >> R3---------R4 >> | | >> | | >> R1---------R2 >> >_______________________________________________ >For more information regarding industry leading CCIE Lab training, please >visit www.ipexpert.com > >Are you a CCNP or CCIE and looking for a job? Check out >www.PlatinumPlacement.com _______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com Are you a CCNP or CCIE and looking for a job? Check out www.PlatinumPlacement.com
