Specifications

ManualsBrandsSMC ManualsNetworkingTigerAccess

281

282

283

284

285

286

287

288

289

290

Management Guide CLI

TigerAccess™ EE

SMC7824M/VSW 285

8.3.12.5 BPDU Filtering

BPDU filtering allows you to avoid transmitting on the ports that are connected to an end

system. If the BPDU Filter feature is enabled on the port, then incoming BPDUs will be fil-

tered and BPDUs will not be sent out of the port.

To enable or disable the BPDU filtering function on the port, use the following command.

Command Mode Description

spanning-tree port PORTS

bpdufilter

enable

Enables a BPDU filtering fuction on specific port.

spanning-tree port PORTS

bpdufilter

disable

no spanning-tree port PORTS

bpdufilter

Bridge

Disables a BPDU filtering fuction on specific port.

By default, it is disabled. The BPDU filter-enabled port acts as if STP is disabled on the

port. This feature can be used for the ports that are usually connected to an end system

or the port that you don’t want to receive and send unwanted BPDU packets. Be cautious

about using this feature on STP enabled uplink or trunk port. If the port is removed from

VLAN membership, correspond BPDU filter will be automatically deleted.

To enable or disable the BPDU filtering function on the edge port, use the following com-

mand.

Command Mode Description

spanning-tree edgeport bpdufil-

ter

default

Enables a BPDU filtering function by default on all

edge ports.

no spanning-tree edgeport

bpdufilter

default

Bridge

Disables a BPDU filtering function by default on all

edge ports.

8.3.12.6 BPDU Guard

BPDU guard has been designed to allow network designers to enforce the STP domain

borders and keep the active topology predictable. The devices behind the ports with STP

enabled are not allowed to influence the STP topology. This is achieved by disabling the

port upon receipt of BPDU. This feature prevents Denial of Service (DoS) attack on the

network by permanent STP recalculation. That is caused by the temporary introduction

and subsequent removal of STP devices with low (zero) bridge priority.

To configure BPDU guard in the switch, perform the following procedure.

Step 1

Configure the specific port as edge-port.

Command Mode Description

spanning-tree port PORTS

edgeport enable

Bridge Configures the port as Edge port.