- Community Home
- >
- Networking
- >
- Switching and Routing
- >
- Comware Based
- >
- Re: wrong duplicate IP error messages on A5500
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО02-18-2016 11:58 AM
тАО02-18-2016 11:58 AM
Re: wrong duplicate IP error messages on A5500
at least, make sure STP root priority on root is superior (=lower).
If somehow a single STP domain is created , instead of multiple domains across L3 links, ports from core will never be blocked by STP
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО02-18-2016 03:44 PM
тАО02-18-2016 03:44 PM
Re: wrong duplicate IP error messages on A5500
I did not realize this procedure yet and I have the follow situation.
When I shutdown the core switch port (GI1/0/2 - L2 through ISP switches to the building #2 for an example) I loss the conectivity with the machines inside the building #1.
Through LLDP neighborhood I am unable to discover the building #2 leg.
I have a VPN tunnel from Equinix Data Center to the environment #1, so I log in in the core through this VPN and reboot the device. After this the machines appear online again and I am able to ping some specific devices through this tunnel.
This is a very strange behaviour. Yesterday I reboot the domain controller and the same situation happen, loss of conectivity obligating me to reboot the device.
Do you think that RSTP can solve this breaks?
Again, thanks in advance.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО02-18-2016 11:38 PM
тАО02-18-2016 11:38 PM
Re: wrong duplicate IP error messages on A5500
Normally after STP changes, the network should converge . After rebooting a switch, the network should converge....to the same situation.
However if some port protection mechanisms (like port security , bpdu guard) has kicked in, and no auto-recovery is configured, a reboot is a way to get connectivity back. (a crude way I might add)
Prior to reboot, review switch log files
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО02-20-2016 02:06 PM - edited тАО02-20-2016 02:13 PM
тАО02-20-2016 02:06 PM - edited тАО02-20-2016 02:13 PM
Re: wrong duplicate IP error messages on A5500
Well, what I did last friday I will list below. All procedures are did on the core switch.
Through ssh connection I list the stp brief.
All ports was listed as "forwarding" and BPDU protection are disabled.
So, in the ports that are connected the servers I did the command enable stp edge-port. After this the BPDU protection is enable listing in stp brief.
A doubt appear after. The GI1/0/48 is the firewall ASA 5505 port. Should I enable stp edge-port in this port too?
After this procedure I did the command undo shutdown on the GI1/0/2 which is a trunk port to the building #2. The convergence time was the loss of 8 pings to the firewall and it starts to ping again but I think the convergence time could be more faster or am I wrong?
Thanks in advance 16again.
EDIT #1: About auto recovery. Where I can enable this feature?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО02-21-2016 12:05 AM
тАО02-21-2016 12:05 AM
Re: wrong duplicate IP error messages on A5500
The ASA5505 doesn't run STP, so you can use edge port settings.
Port recovery is configured with "shutdown-interval <number of seconds>" command.
Default recovery =30 seconds, don't set to 0 (=no recovery)
On the ISP L2 link, you might consider blocking all incoming/outgoing BPDUs on attached ports. There's only one path between building so loops can't be formed there.
Are you running a routing protocol? If the 5500 route table is messed up, you'll also lose connectivity. (what's 5500 config?)
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО02-23-2016 09:10 AM
тАО02-23-2016 09:10 AM
Re: wrong duplicate IP error messages on A5500
Hi.
I will do the command in the firewall port after the job hour.
The core switch config is attached.
How can I block the BPDU over L2 link port?
Thanks a lot and I let you know about the procedure on GI1/0/48 (FW). I set up the shutdown-interval in 10 seconds.
The routing table was automatically generated when the vlans was created. About the port description, it is wrong.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО02-23-2016 11:47 AM
тАО02-23-2016 11:47 AM
Re: wrong duplicate IP error messages on A5500
use the interface command "undo stp enable" on specific port to disable spanning tree on the port
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО02-24-2016 03:31 AM
тАО02-24-2016 03:31 AM
Re: wrong duplicate IP error messages on A5500
I did the command undo stp in the L2 ISP link and stp edged enable in the firewall port.
Did you see something wrong in the routing table?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО02-24-2016 04:09 AM
тАО02-24-2016 04:09 AM
Re: wrong duplicate IP error messages on A5500
@16again wrote:use the interface command "undo stp enable" on specific port to disable spanning tree on the port
Hi,
Based on my experience, this command don't filter BPDU frames (input, output) but only disables STP process for selected L2 port.
Was your intention to exlude one port from STP process?
Br,
Michal
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО02-24-2016 04:16 AM
тАО02-24-2016 04:16 AM
Re: wrong duplicate IP error messages on A5500
This port is a trunk to another building and on the other edge has another L2 switch (HPE V1910).
The intention was to disable BPDU not RSTP at all.
The duplicated IP address messages still on but until now the LAN does not stop working.
Thanks in advance.