Administrator Guide

• Loop guard is supported on a port or port-channel in any spanning tree mode:

• Enabling Portfast BPDU guard and loop guard at the same time on a port results in a port that remains in a blocking state and prevents

trac from owing through it. For example, when Portfast BPDU guard and loop guard are both congured:

• If a BPDU is received from a remote device, BPDU guard places the port in an Err-Disabled Blocking state and no trac is

forwarded on the port.

• If no BPDU is received from a remote device, loop guard places the port in a Loop-Inconsistent Blocking state and no trac is

forwarded on the port.

• When used in a PVST+ network, STP loop guard is performed per-port or per-port channel at a VLAN level. If no BPDUs are received

on a VLAN interface, the port or port-channel transitions to a Loop-Inconsistent (Blocking) state only for this VLAN.

To enable a loop guard on an STP-enabled port or port-channel interface, use the following command.

• Enable loop guard on a port or port-channel interface.

To disable STP loop guard on a port or port-channel interface, use the no spanning-tree 0 loopguard command in an INTERFACE

conguration mode.

To verify the STP loop guard conguration on a port or port-channel interface, use the show spanning-tree 0 guard

[interface

To display the STP guard conguration, use the following command.

The following example shows an STP network (instance 0) in which:

• Root guard is enabled on a port that is in a root-inconsistent state.

• Loop guard is enabled on a port that is in a listening state.