Manualshelf

R211x-HP Flexfabric 11900 Layer 2 - LAN Switching Command Reference

ManualsBrandsHP ManualsNetwork HardwareHP FlexFabric 11000 Switch Products
151152153154155156157158159160
151
Predefined user roles
network-admin
mdc-admin
Usage guidelines
On a port, the loop guard function and the root guard function are mutually exclusive.
When the setting is configured in Layer 2 Ethernet interface view, it takes effect on only that interface.
When the setting is configured in Layer 2 aggregate interface view, it takes effect on only the aggregate
interface.
When the setting is configured on a member port in an aggregation group, it takes effect only after the
port leaves the aggregation group.
Examples
# Enable the root guard function for Ten-GigabitEthernet 1/0/1.
<Sysname> system-view
[Sysname] interface ten-gigabitethernet 1/0/1
[Sysname-Ten-GigabitEthernet1/0/1] stp root-protection
Related commands
stp edged-port
stp loop-protection
stp tc-protection
Use stp tc-protection to enable the TC-BPDU attack guard function for the device.
Use undo stp tc-protection to disable the TC-BPDU attack guard function for the device.
Syntax
stp tc-protection
undo stp tc-protection
Default
The TC-BPDU attack guard function is enabled.
Views
System view
Predefined user roles
network-admin
mdc-admin
Usage guidelines
With the TC-BPDU guard function, you can set the maximum number of immediate forwarding address
entry flushes that the device can perform within a certain interval (every 10 seconds). For TC-BPDUs
received that exceed the limit, the device performs a forwarding address entry flush when the interval
elapses. This prevents frequent flushing of forwarding address entries.