设为首页收藏本站
开启辅助访问

锐捷交换机配置 RLDP 协议进行防环处理

 您所在的位置:网站首页 锐捷交换机怎么设置管理端口 锐捷交换机配置 RLDP 协议进行防环处理

锐捷交换机配置 RLDP 协议进行防环处理

2024-07-11 08:48| 来源: 网络整理| 查看: 265

目录

配置步骤

1. 步骤一 -- 开启RLDP功能

2. 步骤二 -- 配置检测到环路后的处理方式

3. 步骤三 -- 设置端口检测异常事件

4. 步骤四 -- 开启BPDUguard防护功能

5. 步骤五 -- 配置边缘端口

功能验证

参考文献

配置步骤 1. 步骤一 -- 开启RLDP功能 switch(config)#rldp enable 2. 步骤二 -- 配置检测到环路后的处理方式

终端接口下开启 RLDP防止环路,检测到环路后处理方式为 Shutdown-Port;

switch(config)#int f0/1 switch(config-if)#rldp port loop-detect shutdown-port

注:实现防环保护,一共有四种处理方式,分别是以下四种

shutdown-port

#当环路发生时,关闭端口

shutdown-svi

#当环路发生时,关闭svi,svi是联系vlan的接口,一个svi只能和一个vlan相联系

warning

#当环路发生时,显示警告信息

block

#当环路发生时,将端口的状态更改为block阻塞状态

3. 步骤三 -- 设置端口检测异常事件

如果端口被 BPDU Guard检测进入 Err-Disabled状态,再过 300 秒后会自动恢复(基于接口部署策略),重新检测是否有环路。

Ruijie(config-if-GigabitEthernet 0/0)#errdisable recover interval 300 #接口模式下配置 Ruijie(config)#errdisable recover interval 300 #全局模式下配置 4. 步骤四 -- 开启BPDUguard防护功能

终端接口开启BPDU防护不能接收 BPDU报文;

Ruijie(config-if-GigabitEthernet 0/0)#spanning-tree bpduguard enable Ruijie(config-if-GigabitEthernet 0/0)#spanning-tree bpdufilter enable 5. 步骤五 -- 配置边缘端口

连接终端的所有端口配置为边缘端口;

Ruijie(config-if-GigabitEthernet 0/0)#spanning-tree portfast

portfast端口也会继续发送bpdu报文

功能验证 查看RLDP的状态

当g0/5和g0/7口环起来后会出现如下log

Rujijie#

*Mar 19 20:16:00: %RLDP-3-LINK_DETECT_ERROR: loop detection error detect on interface GigabitEthernet 0/7.set this interface errordisable!

*Mar 19 20:16:00: %RLDP-3-LINK_DETECT_ERROR: loop detection error detect on interface GigabitEthernet 0/5.set this interface errordisable!

Mar 19 20:16:01: %LINEPROTO-5-UPDOWN: Line protocol on Interface VLAN 1, changed state to down.

*Mar 19 20:16:02: %LINK-3-UPDOWN: Interface GigabitEthernet 0/5, changed state to down.

*Mar 19 20:16:02: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet 0/5, changed state to down.

*Mar 19 20:16:02: %LINK-3-UPDOWN: Interface GigabitEthernet 0/7, changed state to down.

*Mar 19 20:16:02: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet 0/7, changed state to down.

查看接口状态,发现这两个口被disable了

过了300S,交换机会把端口自动变为恢复状态,如下:

*Mar 19 20:21:01: %PORT_SECURITY-4-ERR_RECOVER: Interface GigabitEthernet 0/5 recover from an error.

*Mar 19 20:21:01: %PORT_SECURITY-4-ERR_RECOVER: Interface GigabitEthernet 0/7 recover from an error.

*Mar 19 20:21:01: %RLDP-3-LINK_DETECT_RECOVER: rldp recover interface GigabitEthernet 0/7 from loop error

*Mar 19 20:21:01: %RLDP-3-LINK_DETECT_RECOVER: rldp recover interface GigabitEthernet 0/5 from loop error

*Mar 19 20:21:04: %LINEPROTO-5-UPDOWN: Line protocol on Interface VLAN 1, changed state to up.

*Mar 19 20:21:06: %LINK-3-UPDOWN: Interface GigabitEthernet 0/5, changed state to up.

*Mar 19 20:21:06: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet 0/5, changed state to up.

*Mar 19 20:21:06: %LINK-3-UPDOWN: Interface GigabitEthernet 0/7, changed state to up.

*Mar 19 20:21:06: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet 0/7, changed state to up.

如果需要立即恢复被disable的端口,可以通过如下命令实现;

Rujijie#rldp reset

Rujijie#

*Mar 19 20:34:32: %PORT_SECURITY-4-ERR_RECOVER: Interface GigabitEthernet 0/7 recover from an error.

*Mar 19 20:34:32: %RLDP-3-LINK_DETECT_RECOVER: rldp recover interface GigabitEthernet 0/7 from loop error

*Mar 19 20:34:32: %PORT_SECURITY-4-ERR_RECOVER: Interface GigabitEthernet 0/5 recover from an error.

*Mar 19 20:34:32: %RLDP-3-LINK_DETECT_RECOVER: rldp recover interface GigabitEthernet 0/5 from loop error

参考文献 锐捷交换机配置RLDP协议进行防环处理_「已注销」的博客-CSDN博客快搜预览中心



【本文地址】


今日新闻

推荐新闻

CopyRight 2018-2019 办公设备维修网 版权所有 豫ICP备15022753号-3