Understanding Issues Related to Inter VLAN Bridging

Similar documents
isco Understanding Spanning Tree Protocol Topology Chan

Configuring STP and RSTP

Configuring Transparent Bridging

Configuring STP. Understanding Spanning-Tree Features CHAPTER

Catalyst 1900 Series and Catalyst 2820 Series Enterprise Edition Software Configuration Guide

Asymmetric Routing with Bridge Groups on Catalyst 2948G L3 and 4908G L3 Switches

Token Ring VLANs and Related Protocols

Configuring Rapid PVST+

Configuring Spanning Tree Protocol

Configuring EtherChannel Between Catalyst 2900XL/3500XL Switches and CatOS Switches

Spanning Tree Protocol(STP)

Transparent Bridging and VLAN

Chapter 3 Reading Organizer

Configuring Spanning Tree Protocol

Configuring Rapid PVST+ Using NX-OS

Overview. Overview. OTV Fundamentals. OTV Terms. This chapter provides an overview for Overlay Transport Virtualization (OTV) on Cisco NX-OS devices.

Configuring Rapid PVST+

Chapter 5. Spanning Tree Protocol (STP) Part I

Configuring BPDU tunneling

Implementing Spanning Tree Protocol

Token Ring VLANs and Related Protocols

Packet Switching on L2 (LAN Level)

Implement Spanning Tree Protocols. LAN Switching and Wireless Chapter 5

Extending Switched Networks with Virtual LANs. 2000, Cisco Systems, Inc. 7-1

Configuring Spanning Tree

NAT Support for Multiple Pools Using Route Maps

1 of :22

Building Cisco Multilayer Switched Networks (BCMSN)

Computer Networking. December 2004 CEN CN

IP Phone 7940/7960 Fails to BootProtocol Application Invalid

The Spanning Tree Protocol

3. What could you use if you wanted to reduce unnecessary broadcast, multicast, and flooded unicast packets?

VLANs. LAN Switching and Wireless Chapter 3. Version Cisco Systems, Inc. All rights reserved. Cisco Public 1

Configuring MLD Snooping

Top-Down Network Design

Spanning Tree Protocol Root Guard Enhancement

Spanning-Tree Protocol

Packet Switching on L2 (LAN Level)

Configuring Catalyst Switches for Polycom Conference Phones

Table of Contents. (Rapid) Spanning Tree Protocol. A simple bridge loop. An even worse bridge loop. Bridge loops Two bridges Three bridges (R)STP

H3C S10500 Attack Protection Configuration Examples

Configuring Optional Spanning-Tree Features

The multiple spanning-tree (MST) implementation is based on the IEEE 802.1s standard.

Question No: 1 On the MSTP network as shown in the figure, what is the role of the switch in MSTI 1 according to the configuration?

UCS Uplink Ethernet Connection Configuration Example

Configuring StackWise Virtual

Configuring Flex Links

Table of Contents. Cisco Using One DHCP Server for Voice and Data Networks

LAN design. Chapter 1

Exam Questions

Configuring MLD Snooping

CIS 83 Midterm Spring 2004 Answer Sheet Name Score Grade Question Answer Question Answer

RSTP Configuration. Page 1 of 26

Objectives. 1. Introduction:

Table of Contents. Cisco Understanding Rapid Spanning Tree Protocol (802.1w)

Describing the STP. Enhancements to STP. Configuring PortFast. Describing PortFast. Configuring. Verifying

Table of Contents. Cisco Spanning Tree Protocol Enhancements using Loop Guard and BPDU Skew Detection Features

Troubleshooting Transparent Bridging Environments

3. INTERCONNECTING NETWORKS WITH SWITCHES. THE SPANNING TREE PROTOCOL (STP)

Table of Contents. Cisco Understanding and Configuring VLAN Trunk Protocol (VTP)

Configuring STP and Prestandard IEEE 802.1s MST

CIS 83 Lab Assignment

Configuring VLAN CHAPTER

Hot Standby Router Protocol (HSRP): Frequently Asked Questions

Maintaining Specific VLAN Identification. Comparing ISL and 802.1Q. VLAN Trunking

Configuring Virtual Private LAN Services

Switched Ethernet Virtual LANs

Spanning Tree Protocol

LAN Troubleshooting. Ethernet Troubleshooting

DD2490 p Layer 2 networking. Olof Hagsand KTH CSC

Table of Contents. (Rapid) Spanning Tree Protocol. A simple bridge loop. An even worse bridge loop. Bridge loops Two bridges Three bridges (R)STP

Managing Network Spanning Trees

Junos Enterprise Switching

Configuring Token Ring Inter-Switch Link

CCNA Layer 2 switching. Revision no.: PPT/2K605/03

Implementing Multiple Spanning Tree Protocol

Campus Networking Workshop. Layer 2 engineering Spanning Tree and VLANs

Configuring Spanning Tree Protocol

Implement Spanning Tree Protocols-PART-I. LAN Switching and Wireless Chapter 5 Modified by Tony Chen 05/01/2008

PASS4TEST IT 인증시험덤프전문사이트

Multiple 802.1Q Spanning Trees

Understanding and Configuring Switching Database Manager on Catalyst 3750 Series Switches

62HConfiguring port role restriction 131H37. 63HConfiguring TC-BPDU transmission restriction 132H38. 64HEnabling TC-BPDU guard 133H38

Table of Contents. (Rapid) Spanning Tree Protocol. An even worse bridge loop. A simple bridge loop. Bridge loops Two bridges Three bridges (R)STP

Use NAT to Hide the Real IP Address of CTC to Establish a Session with ONS 15454

- Hubs vs. Switches vs. Routers -

Advanced Computer Networks

Configuring Port-Based Traffic Control

Introduction to OSPF

Upon completion of this chapter, you will be able to perform the following tasks: Identify what a VLAN is and how it operates. Configure a VLAN to

Document ID: Contents. Introduction. Prerequisites. Requirements. Components Used. Conventions. Background Information.

Configuring MST Using Cisco NX-OS

Why Packet Switching on LAN? Packet Switching on L2 (LAN Level) Bridge / Router. Agenda

Understanding Rapid Spanning Tree Protocol (802.1w)

RSTP Configuration. RSTP Configuration

The following steps should be used when configuring a VLAN on the EdgeXOS platform:

Top-Down Network Design, Ch. 7: Selecting Switching and Routing Protocols. Top-Down Network Design. Selecting Switching and Routing Protocols

All Transparent VTP Domain to Server Client VTP Domain Migration Configuration Example

Configuring Private VLANs

Configuring Private VLANs

Transcription:

Understanding Issues Related to Inter VLAN Bridging Document ID: 11072 Contents Introduction Prerequisites Requirements Components Used Conventions Spanning Tree Topology Concerns Recommended Use of Hierarchical Spanning Tree with VLAN Bridge Spanning Tree Protocol Spanning Tree Defaults for VLAN Bridge, DEC, and IEEE 802.1D Spanning Tree Protocol Sample Configuration with VLAN Bridge Spanning Tree Protocol on MSFC Sample Configuration with DEC Spanning Tree Protocol on MSFC Related Information Introduction Inter VLAN bridging is the concept of simultaneously bridging multiple VLANs together. Inter VLAN bridging is occasionally needed in order to bridge non routable protocols or unsupported routed protocols between multiple VLANs. There are several topology considerations and limitations that must be addressed before you configure inter VLAN bridging. This document covers these considerations and recommends configuration workarounds. This list is a brief summary of problems that can arise from inter VLAN bridging: High CPU utilization on respective inter VLAN routers Collapsed Spanning Tree Protocol (STP) where all VLANs belong to a single instance of a STP topology Excessive Layer 2 (L2) flooding of unknown unicast, multicast, and broadcast packets Segmented network topology A small set of protocols, for example Local Area Transport (LAT) and Netbeui, cannot be routed. There is a product requirement to allow such protocols to be software bridged between two or more VLANs with bridge groups on a router. When bridging certain protocols together between VLANs, you must provide a mechanism to prevent L2 loop formation when there are multiple connections between the VLANs. STP on the bridge groups involved prevents the formation of loops, but also has these potential problems: Each VLAN's STP could be collapsed into one single STP that encompasses all the VLANs that are bridged together. You lose the ability to place a root bridge on each VLAN. This is needed for proper operation of Uplink Fast. The ability to control at what points in the network links are blocked. It is very likely that a VLAN can become partitioned in the middle of a VLAN. This cuts off access to a portion of a VLAN's router protocols, such as IP. The bridged protocols still work, but take a longer path in this case.

Prerequisites Requirements There are no specific requirements for this document. Components Used This document is not restricted to specific software and hardware versions. The information in this document was created from the devices in a specific lab environment. All of the devices used in this document started with a cleared (default) configuration. If your network is live, make sure that you understand the potential impact of any command. Conventions Refer to Cisco Technical Tips Conventions for more information on document conventions. Spanning Tree Topology Concerns Inter VLAN bridging on a router that uses the same STP as the L2 switches results in a single STP instance for every VLAN that is a member of the same bridge. By default, all Catalyst switches and routers run the IEEE STP. Since there is a single instance of STP for all VLANs, several side effects result. For example, a Topology Change Notification (TCN) in one VLAN is propagated to all VLANs. Excessive TCNs can result in excessive unicast flooding. For more information on TCNs, refer to Understanding Spanning Tree Protocol Topology Changes. Additional possible side effects are discussed based on this physical topology: The diagram shown illustrates a physical topology of a typical Layer 3 (L3) network.

Since two VLANs exist, all trunks between the switches and the routers carry both VLAN 1 and VLAN 2. With all Catalyst switches, each VLAN has its own STP topology. For example, the STP for VLAN 1 and VLAN 2 can be illustrated with a logical diagram: Once the Multilayer Switch Feature Cards (MSFCs) in both Catalyst 6500 are configured for bridging with the IEEE STP, both VLAN 1 and VLAN 2 are bridged together in order to form one single instance of STP. This single instance of STP contains only one STP root. Another way to view the network with the MSFC's bridging is to consider the MSFCs as separate bridges. One instance of STP that involves the MSFCs can result in an undesirable network topology. In this diagram, the port that virtually connects the Catalyst 6500 to the MSFC router (port 15/1) is in the STP blocking state for VLAN 2. Since the Catalyst 6500 does not differentiate between a L2 and a L3 packet, all traffic destined for the MSFC is dropped since the port is in the STP blocking state. For example, the PC in VLAN 2, as shown in the diagram, is able to communicate to the MSFC on the switch 1 but not the MSFC on its own switch, switch 2.

In this diagram, the STP PortVLANCost is increased on the trunk between the Catalyst 6500 switches so that the ports that go to the MSFC are in the STP forwarding state. In this situation, the port that goes to switch 1 from switch 2 for VLAN 2 is in the STP blocking state. The STP topology forwards VLAN 2 traffic through the MSFC. Since the MSFC is configured for IP routing, the MSFC only bridges non IP frames. As a result, the PC in VLAN 2 is not able to communicate to devices in VLAN 2 on the switch 1. This is the case because the port that goes to the switch is in the blocking state, and the MSFC does not bridge any L3 frames. In this diagram, the MSFC blocks on the VLAN 2 connection to switch 2. The MSFC only blocks L2 frames from going out the VLAN 2 connection to the switch and not L3 frames. This is because the MSFC is a L3 device that is able to determine the difference between a frame that needs to be bridged or routed. In this example, there is no network segmentation, and all network traffic flows as desired. Although there is no network segmentation, there is still one single instance of STP for all VLANs.

Recommended Use of Hierarchical Spanning Tree with VLAN Bridge Spanning Tree Protocol A hierarchical design is the preferred method for how to configure inter VLAN bridging. A hierarchical design is configured with either the Digital Equipment Corporation (DEC) or VLAN bridge STP on the MSFC. VLAN bridge is recommended over DEC. Separate STPs create a two Layer STP design. In this manner, the individual VLANs maintain their own instance of the IEEE STP. The DEC or VLAN bridge protocol creates an STP topology that is transparent to the IEEE STP. The protocol also puts the appropriate ports on the MSFC in the blocking state in order to avoid a L2 loop. The hierarchy is created by the fact that DEC and the VLAN bridge STP do not propagate IEEE Bridge Port Data Units (BPDUs), but that IEEE STP propagates the DEC and VLAN Bridge BPDUs. From this diagram, the MSFCs run VLAN bridge STP, and the Catalyst 6500 switches run IEEE STP. Since the MSFCs do not pass the IEEE BPDUs from the switch, each VLAN on the switch runs separate instances of IEEE STP. Therefore, all ports on the switch are in a forwarding state. The switches pass the VLAN bridge BPDUs from the MSFCs. Therefore, a VLAN interface on the non root MSFC goes to blocking. In this example, there is no network segmentation. All network traffic flows as desired with two different STPs. The MSFC, a L3 device, is able to determine the difference between a frame that needs to bridged or routed.

Spanning Tree Defaults for VLAN Bridge, DEC, and IEEE 802.1D Spanning Tree Protocol STP Protocol IEEE 802.1D VLAN Bridge DEC Destination Group Address 01 80 C2 00 00 00 01 00 0C CD CD CE Data Link Header SAP 0x4242 SNAP cisco, TYPE 0x010c Max Age (secs) Forward Delay (secs) 20 15 2 30 20 2 09 00 2b 01 00 01 0x8038 15 30 1 Hello Time (secs) Sample Configuration with VLAN Bridge Spanning Tree Protocol on MSFC Since the VLAN bridge STP does operate on top of IEEE STP, you must increase the forward delay longer than the time it takes for the IEEE STP to stabilize after a topology change. This ensures that a temporary loop does not occur. In order to support this, the default values for the VLAN bridge STP parameter are set higher than that of IEEE. An example is shown: MSFC 1 (Root Bridge) interface Vlan1 ip address 192.168.75.1 255.255.255.0 interface Vlan2 ip address 192.168.76.1 255.255.255.0

MSFC 2 bridge 1 protocol vlan bridge bridge 1 priority 8192 interface Vlan1 ip address 192.168.75.2 255.255.255.0 interface Vlan2 ip address 192.168.76.2 255.255.255.0 bridge 1 protocol vlan bridge Sample Configuration with DEC Spanning Tree Protocol on MSFC Since the DEC protocol STP operates on top of IEEE STP, you must increase the forward delay longer than the time it takes for the IEEE STP to stabilize after a topology change. This ensures that a temporary loop does not occur. In order to support this, you must adjust the default values for DEC STP. For DEC STP, the default forward delay is 30. Unlike IEEE or VLAN bridge STP, DEC STP combines its listen/learn into one timer. Therefore, you must increase the forward delay of DEC to at least 40 seconds on all routers that run DEC STP. An example is shown: MSFC 1 (Root Bridge) MSFC 2 interface Vlan1 ip address 192.168.75.1 255.255.255.0 interface Vlan2 ip address 192.168.76.1 255.255.255.0 bridge 1 protocol dec bridge 1 priority 8192 bridge 1 forward time 40 interface Vlan1 ip address 192.168.75.2 255.255.255.0 interface Vlan2 ip address 192.168.76.2 255.255.255.0 bridge 1 protocol dec bridge 1 forward time 40 Related Information LAN Product Support Pages LAN Switching Support Page Technical Support & Documentation Cisco Systems

Contacts & Feedback Help Site Map 2014 2015 Cisco Systems, Inc. All rights reserved. Terms & Conditions Privacy Statement Cookie Policy Trademarks of Cisco Systems, Inc. Updated: Sep 09, 2005 Document ID: 11072

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback