Manualshelf

R0106-HP MSR Router Series Layer 2 - LAN Switching Configuration Guide(V7)

ManualsBrandsHP ManualsNetwork HardwareHP MSR2003 AC Router
71727374757677787980
72
To configure port role restriction:
Ste
p
Command Remarks
1. Enter system view.
system-view N/A
2. Enter Layer 2 Ethernet interface
view.
interface interface-type
interface-number
N/A
3. Enable port role restriction.
stp role-restriction
By default, port role restriction is
disabled.
Configuring TC-BPDU transmission restriction
CAUTION:
Enabling TC-BPDU transmission restriction on a port mi
g
ht cause the previous forwardin
g
address table to
fail to be updated when the topology changes.
The topology change to the user access network might cause the forwarding address changes to the core
network. When the user access network topology is unstable, the user access network might affect the
core network. To avoid this problem, you can enable TC-BPDU transmission restriction on a port. With
this feature enabled, when the port receives a TC-BPDU, it does not forward the TC-BPDU to other ports.
Make this configuration on the port that connects to the user access network.
To configure TC-BPDU transmission restriction:
Ste
p
Command Remarks
1. Enter system view.
system-view
N/A
2. Enter Layer 2 Ethernet interface
view.
interface interface-type
interface-number
N/A
3. Enable TC-BPDU transmission
restriction.
stp tc-restriction
By default, TC-BPDU transmission
restriction is disabled.
Enabling TC-BPDU guard
When a device receives topology change (TC) BPDUs (the BPDUs that notify devices of topology
changes), it flushes its forwarding address entries. If someone uses TC-BPDUs to attack the device, the
device will receive a large number of TC-BPDUs within a short time. Then the device is busy with
forwarding address entry flushing. This affects network stability.
TC-BPDU guard allows you to set the maximum number of immediate forwarding address entry flushes
performed within 10 seconds after the device receives the first TC-BPDU. For TC-BPDUs received in excess
of the limit, the device performs a forwarding address entry flush when the time period expires. This
prevents frequent flushing of forwarding address entries. HP recommends that you enable TC-BPDU
guard.
To enable TC-BPDU guard:
Step Command Remarks
1. Enter system view.
system-view N/A