To have a better experience, please upgrade your IE browser.upgrade
Questo sito utilizza cookie di profilazione (propri e di terze parti) per ottimizzare la tua esperienza online e per inviarti pubblicità in linea con le tue preferenze. Continuando a utilizzare questo sito senza modificare le tue preferenze acconsenti all’uso dei cookie. Se vuoi saperne di più o negare il consenso a tutti o ad alcuni cookie clicca qui>
The website that you are visiting also provides Arabian language. Do you wish to switch language version?
يوفر موقع الويب الذي تزوره المحتوى باللغة العربية أيضًا. هل ترغب في تبديل إصدار اللغة؟
The website that you are visiting also provides Russia language Do you wish to switch language version?
Данный сайт есть в английской версии. Желаете ли Вы перейти на английскую версию?
Smart Modular Data Center
Prefabricated Modular Data Center
Precision Air Conditioners
Data Center Management
Handsets and Terminals
Rapid Deployment System
Platform or Infrastructure
Core Network Devices
Radio Access Network Devices
Firewall and Application Security Gateway
DDoS Protection Systems
Anti-APT Based on Big Data Analysis
Multi-service Control Gateways
Multi-Service Transport Platforms
AR Series IoT Gateways
AR Series Access Routers
Hybrid Flash Storage
Integrated Video Site Solution
Enterprise Telecom Energy
Smart Site Management System
Multi-Service Transmission Platforms
HD Network Cameras
Video Cloud Nodes
Video Content Management
Indoor Access Points
Outdoor Access Points
Scenario-specific product series
IT Infrastructure Storage Solutions
Data Center Network
Data Center Energy
Enterprise Communications Solution
Contact Center Solution
Advisory and Implementation
Support and Optimization
Training and Certification
Explore Technology Services
National Research and Education Network
Education Cloud Data Center
Multi-Channel HD Telemedicine Solution
Over The Top/Multi-Tenant Data Center (OTT/MTDC)
Internet Exchange Point (IXP)
Internet Access Provider (IAP)
Design & Simulation
Planning & Analytics
Oil & Gas IoT
HPC & Operations Management
Visualized Emergency Communication
Digital Urban Rail
Retail Cloud Platform
Intelligent Operations Center
Power Transmission Communications Network
FusionSolar Smart PV
Power Distribution Automation Communications
Advanced Metering Infrastructure
Buy from Huawei
If you need to get information about your project, please submit your information and we will contact you within one working day.
Consult online customer service regarding products/solutions you are interested in.
If your company has signed an eDeal contract with Huawei, please buy your required product/solution via the link below.
Buy from resellers
Search for a nearby reseller and get direct contact information.
Find a Partner
Become a Partner
Alliance and solution Partner
Huawei Authorized Learning Partner
Huawei Authorized Information and Network Academy
The S5700 switch is connected to Cisco LAN that is using PVST+ protocol to break layer 2 loops. The interface connects to Cisco LAN is G0/0/6. We can view the interface configuration below.
undo negotiation auto
description PtP Zuiderzeeland #4
port link-type dot1q-tunnel
port default vlan 1915
mac-limit maximum 100
loopback-detect recovery-time 60
loopback-detect action block
stp bpdu-filter enable
stp edged-port enable
undo ndp enable
storm-control broadcast min-rate 1488 max-rate 1488
storm-control multicast min-rate 1488 max-rate 1488
storm-control action error-down
storm-control enable trap
storm-control enable log
Customer configure STP BPDU FILTER and EDGE PORT on this interface hoping to block PVST+ BPDU on this interface. But it didn't work... let's see why.
From V200R003 software version S5700 switch series will forward transparently BPDU of PVST+ by default through ASIC. What does STP BPDU FILTER and EDGE PORT? According with product documentation, after a specified port is configured as an edge port and BPDU filter port in the interface view, the port does not process or send BPDUs and cannot negotiate the STP state with the directly connected port on the peer device.
So what's wrong here?
BPDU filter and STP edge port commands will refer only to MSTP, STP or RSTP BDPUs. PVST+ is a Cisco private protocol and is processed differently. Our switch considers PVST+ as normal L2 frames, therefore it will not forward them into protocol stack.
How to fix this?
In order to filter PVST+ BPDUs that are arriving to the switch I propose to use the following traffic policy:
acl number 4000
rule 10 permit destination-mac 0100-0ccc-cccd \\\ match PVST+ BPDUs
traffic classifier c1 type or
if-match acl 4000
traffic behavior b1
deny \\\\\ to filter the BPDUs you will need to change behavior to Deny.
traffic policy p1
classifier c1 behavior b1 precedence 5
then apply the policy on the system globally.
[S570]traffic-policy p1 global inbound