Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Spanning-tree "sanity" check ....

Solved
thomasthomsen
Head in the Cloud
‎Feb 27 2024 8:42 AM
‎Feb 27 2024 8:42 AM

Spanning-tree "sanity" check ....

So ... I encountered an issue today, and that made me wonder a couple of things:

 

1 : On what VLAN does a Meraki switch send its BPDUs ?

Documentation seems to say "Vlan1" - But if you change the Management VLAN in the switch settings, does the Spanning-tree VLAN change (For BPDUs) ?

 

2: If I set VLAN fx. 20 on the switch management page, but manually configure a switch to fx. VLAN21 does that switch then send BPDUs using VLAN21 ?

 

3: Or does it always just send the BPDU's on the native VLAN on a trunk port (regardless of the native vlan).

Fx. on a switch two different trunk ports, one trunk port uses vlan 10 as native, and one uses vlan 20 as native vlan. Will I then see BPDU's on vlan 10 on one trunk and vlan 20 on the other trunk port (or lets say .. untagged on both ports) ?

 

Im really confused.

From packet captures I made Im actually leaning towards "3".

 

Am I mistaken ? Or what is going on ? 🙂

 

Thanks

Thomas

 

Subscribe
1 Accepted Solution
Ryan_Miles
Meraki Employee
Meraki Employee
‎Feb 27 2024 8:51 AM
‎Feb 27 2024 8:51 AM

#3

View solution in original post

Subscribe
9 Replies 9
Ryan_Miles
Meraki Employee
Meraki Employee
‎Feb 27 2024 8:51 AM
‎Feb 27 2024 8:51 AM

#3

Subscribe
alemabrahao
Kind of a big deal
Kind of a big deal
‎Feb 27 2024 9:01 AM
‎Feb 27 2024 9:01 AM

You can also check this.

 

Spanning Tree Protocol (STP) Overview - Cisco Meraki Documentation

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
Subscribe
thomasthomsen
Head in the Cloud
‎Feb 27 2024 9:10 AM
‎Feb 27 2024 9:10 AM

Ok .. So I guess the documentation should read ... from what my additional packet captures tells me : "Untagged VLAN" instead of VLAN1.

And re-reading the documentation it does not actually say VLAN 1 - but it mentions VLAN 1 for interoperability with non-Meraki switches. - So I read that wrong. (My mistake 🙂 )

 

So I always see BPDU's on the untagged VLAN, fine.

Then, for fun, I tried to create a trunk port with no native vlan ... and the BPDUs on that port are send untagged .... hmmmm .. ... "this is fine ?".

 

But I think I now have a somewhat better understanding.

0 Kudos
Subscribe
In response to thomasthomsen
thomasthomsen
Head in the Cloud
‎Feb 27 2024 12:37 PM
‎Feb 27 2024 12:37 PM

Hmmm just another thought.

What happens if there is another switch that runs a Per Vlan STP method .. and that switch sends a BPDU to the Meraki switch on an tagged VLAN ... what does the Meraki switch do with this packet ? Forward it our all ports with the VLAN on it (tagged or no) or just discard that packet. If its discarding it, my issue is explained I think (still trying to figure every scenario out).

0 Kudos
Subscribe
In response to thomasthomsen
alemabrahao
Kind of a big deal
Kind of a big deal
‎Feb 27 2024 12:44 PM
‎Feb 27 2024 12:44 PM

I'm not sure but If a Meraki switch receives a BPDU on a tagged VLAN from another switch running PVST, it would handle it based on its STP settings. If STP is enabled, the switch would participate in the Spanning Tree process, if STP is disabled, the switch would not participate in any STP processing, including handling BPDUs.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
Subscribe
In response to thomasthomsen
alemabrahao
Kind of a big deal
Kind of a big deal
‎Feb 27 2024 1:02 PM
‎Feb 27 2024 1:02 PM

https://documentation.meraki.com/MS/Deployment_Guides/Advanced_MS_Setup_Guide#PVST.2FPVST.2B

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
Subscribe
In response to alemabrahao
thomasthomsen
Head in the Cloud
‎Feb 27 2024 1:09 PM
‎Feb 27 2024 1:09 PM

Yeah I have read that "Protocol interoperability" a few times ...

... but I just wonder , because I have never tried, and thinks it is "bad", what actually happens when / if you configure a non-Meraki switch to do RPVST or MST (more then one instance).

And you make a little "ring" between lets say 3 switches, one Meraki that thinks it should be root (with a RB priority), and two other switches (just default RB priority), every port in the ring with trunk ports (with more then one vlan).

It will moste likely be "bad" but my brain is trying to figure out why, if the Meraki switch in theory listens to the BPDU it receives on other VLANs too.

 

0 Kudos
Subscribe
In response to thomasthomsen
MasG
Meraki Employee
Meraki Employee
‎Feb 28 2024 6:41 AM
‎Feb 28 2024 6:41 AM

Since Meraki switches don't run PVST and they only run STP/RSTP which mean these two protocols are not VLAN aware you could face some issue if you run into a scenario like the one you described above. Therefore to prevent issues we recommend to convert the STP topology into MST single instance as described in the interoperability section of the kb linked below.

https://documentation.meraki.com/MS/Deployment_Guides/Advanced_MS_Setup_Guide#PVST.2FPVST.2B

0 Kudos
Subscribe
In response to MasG
thomasthomsen
Head in the Cloud
‎Feb 28 2024 7:55 AM
‎Feb 28 2024 7:55 AM

Yeah and I think this is what confused me.

Also ... its almost impossible to work around from other equipment.

I cant wait until someday where Meraki also supports MST (with more then one instance) or another per vlan STP version where you can control things a bit more.

0 Kudos
Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.