On Thursday 12 March 2009 02:57:02 pm Michael K. Smith - Adhost wrote: > I echo what Lincoln said as loudly as I can without > typing in all caps. If you enable filtering and you get > a second path somehow or somewhere (customers can be very > helpful by doing "stuff" when you're not looking), you > will loop up your entire network. This will happen at 3 > am 2 years from now on a Sunday when you're out of town > and your front line tech is asleep in a hut somewhere. > Trust me. BPDU-filter bad. Really.
As one poster subtly mentioned, limit BPDU filtering to Edge ports (Portfast-enabled ports in Cisco speak). Trunk ports would still process BPDU's, as they are typically not configured as Edge ports. Cheers, Mark.
signature.asc
Description: This is a digitally signed message part.
_______________________________________________ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/