Table of Contents
Advertisement
Command Manual - STP
Quidway S2000 Series Ethernet Switches
For the related command, see stp mode.
Example
# Enable RSTP on a switch.
[Quidway] stp enable
# Disable RSTP on Ethernet0/1.
[Quidway-Ethernet0/1] stp disable
1.1.4 stp bpdu-protection
Syntax
stp bpdu-protection
undo stp bpdu-protection
View
System view
Parameter
None
Description
Using stp bpdu-protection command, you can enable BPDU protection on a switch.
Using undo stp bpdu-protection command, you can resume the default status of
BPDU protection function.
By default, BPDU protection is not enabled.
For an access layer device, the access port is generally connected to the user terminal
(such as a PC) or file server directly and configured as an edge port to implement the
fast transition. When such port receives BPDU packet, the system will set it to
non-edge port and recalculate the spanning tree, which will cause network topology
flapping. In normal cases, these ports will not receive any BPDU packets. However,
someone may forge BPDU to maliciously attack the switch and cause network
flapping.
RSTP provides BPDU protection function against such attack. After BPDU protection
function is enabled on a switch, the system will disable an edge port that has received
BPDU and notify the network manager about it. The disabled port can only be
resumed by network manager.
Example
# Enable BPDU protection function on a switch.
[Quidway] stp bpdu-protection
Chapter 1 RSTP Configuration Commands
1-4
Hide quick links:
Advertisement
Chapters
Table of Contents
