How can I configure STP when a CE switch connects to a server

19

Basic Concept
If a specified port of a CE switch is connected to no other switching devices but directly connected to a server, the port can be configured as an edge port. The edge port will not participate in spanning tree calculation, which speeds up network topology convergence and enhances network stability.
In normal cases, an edge port does not receive any BPDUs. If a switch is attacked by forged BPDUs, edge ports will receive BPDUs. The switch then sets the edge ports as non-edge ports and recalculates the spanning tree, resulting in network flapping. You can configure BPDU protection to defend against network attacks of this type.

Configuration
When a CE switch connects to a server, configure the port connected to the server as an edge port and configure BPDU protection. The following takes the RSTP mode as an example:
system-view
[~HUAWEI] stp mode rstp //Set the STP working mode to RSTP.
[*HUAWEI] interface 10ge 1/0/1
[*HUAWEI-10GE1/0/1] stp edged-port enable //Configure the port as an edge port.
[*HUAWEI-10GE1/0/1] quit
[*HUAWEI] stp bpdu-protection //Enable BPDU protection.
[*HUAWEI] commit

Other related questions:
How is the LACP mode configured when a CE switch connects to a third-party device through an Eth-Trunk
Run the mode { lacp-static | lacp-dynamic | manual [ load-balance ] } command in the Eth-Trunk interface view to configure the LACP mode of the Eth-Trunk on the CE switch. When a CE switch connects to a third-party device, the LACP modes must be consistent on the two ends. Mainstream network devices that connect to CE switches include devices from Cisco, Juniper, and H3C. The table on the right describes the mapping between aggregation modes.

How can the switch connect to the RADIUS server when 802.1x authentication is configured
When you configure 802.1x authentication, run the dot1x enable command to enable 802.1x authentication globally and on an interface. In addition, ensure that the switch and the RADIUS server can communicate at Layer 3.

How can I configure the path cost of an interface on a CE switch running STP/MSTP
Path costs determine root interface selection during spanning tree calculation. In a spanning tree, the interface with the lowest path cost to the root bridge is selected as a root interface.

You can run the stp [ process process-id ] [ instance instance-id ] cost cost command in the interface view to configure the path cost of an interface. It is recommended that the path cost of an interface be set smaller within the specified range if the rate of the link on the interface is greater.

# Set the path cost of 10GE1/0/1 to 200.
system-view
[~HUAWEI] interface 10ge 1/0/1
[~HUAWEI-10GE1/0/1] stp cost 200
[*HUAWEI-10GE1/0/1] commit Description: 
The path cost of an interface is related to the algorithm for calculating path costs. If the path cost calculation algorithm is changed using the stp pathcost-standard command, the interface path cost configured through this command will be restored to the default value.

If you have more questions, you can seek help from following ways:
To iKnow To Live Chat
Scroll to top