Command Line Reference Guide
Rapid Spanning Tree Protocol (RSTP) | 1205
Defaults
Not configured
Command Modes
INTERFACE
Command
History
Usage
Information
The BPDU guard option prevents the port from participating in an active STP topology in case a
BPDU appears on a port unintentionally, or is misconfigured, or is subject to a DOS attack. This option
places the port into an error disable state if a BPDU appears, and a message is logged so that the
administrator can take corrective action.
If shutdown-on-violation is not enabled, BPDUs will still be sent to the RPM CPU.
Example FTOS(conf)#interface gigabitethernet 4/0
FTOS(conf-if-gi-4/0)#spanning-tree rstp edge-port
FTOS(conf-if-gi-4/0)#show config
!
interface GigabitEthernet 4/0
no ip address
switchport
spanning-tree rstp edge-port
no shutdown
FTOS#
shutdown-on-
violation
(OPTIONAL) Enter the keyword shutdown-on-violation to hardware disable an interface
when a BPDU is received and the port is disabled.
priority
priority
(OPTIONAL) Enter keyword
priority
followed by a value in increments of 16 as the priority.
Range: 0 to 240.
Default: 128
Version 8.2.1.0 Introduced hardware shutdown-on-violation options
Version 7.6.1.0 Support added for S-Series
Version 7.5.1.0 Support added for C-Series
Version 7.4.1.0 Added the optional Bridge Port Data Unit (BPDU) guard.
Version 6.2.1.1 Introduced for E-Series
Note: A port configured as an edge port, on an RSTP switch, will immediately transition to the
forwarding state. Only ports connected to end-hosts should be configured as edge ports. Consider an
edge port similar to a port with a spanning-tree portfast enabled.