04-17-2018 02:25 PM
I have two doubts about this feature:
- I saw the BPDU protection feature is enabled on a per-port basis with the command "spanning-tree <port-list> bpdu-protection". Cisco has the command "spanning-tree portfast bpduguard" which allows to enable the feature in all the portfast ports at the same time. Is there any command to enable this feature in all auto-edge ports at the same time in Aruba?
- When this feature is enabled, is the port disabled always it receives a BPDU or only when it receives a better BPDU?
Solved! Go to Solution.
04-17-2018 02:38 PM
Addressing your questions in order:
- ArubaOS-Switch allows configuration of BPDU protection on a per-port basis only; we do not have an equivalent to the command you provided. I will provide feedback to engineering.
- BPDU protection will shut down a port if any BPDU is received. To cause a port to shut down only when a superior BPDU is received, you would instead use the root guard feature, which is configured in a nearly identical manner to BPDU protection:
switch(config)# spanning-tree <port-list> root-guard
Re: About BPDU protection feature
02-04-2019 05:44 AM
This is from the User Guide:
Re-enabling a port blocked by BPDU protection
Ports disabled by BPDU Protection remain disabled unless BPDU
Protection is removed from the switch or by configuring a nonzero BPDU protection timeout. For example, if you want to re-enable protected ports 60 seconds after receiving a BPDU, you would use this command:
switch(config)#: spanning-tree bpdu-protection-timeout 60