Brocade Communications Systems 53-1001762-01 specification

9 spanning-tree guard root

spanning-tree guard root

	Enables the guard root to restrict which interface is allowed to be the spanning-tree root port or the
	path-to-the root for the switch.
Synopsis	spanning-tree guard root
	no spanning-tree guard root
Operands	none
Defaults	Guard root is disabled.
Command	Interface configuration mode
Modes
Description	Use this command to enable the guard root on the interface. Use the no spanning-tree guard root
	command to disable guard root on the selected interface.
Usage	The root port provides the best path from the switch to the root switch.
Guidelines
Note	Guard root protects the root bridge from malicious attacks and unintentional misconfigurations
	where a bridge device that is not intended to be the root bridge becomes the root bridge. This
	causes severe bottlenecks in the datapath. Guard root ensures that the port on which it is enabled
	is a designated port. If the guard root enabled port receives a superior Bridge Protocol Data Unit
	(BPDU), it goes to a discarding state.
Examples	To enable guard root:
	switch(conf-if-te-0/1)#spanning-tree guard root
See Also	spanning-tree cost

154	Converged Enhanced Ethernet Command Reference
	53-1001762-01

Page 172

Image 172

Brocade Communications Systems 53-1001762-01 manual Spanning-tree guard root, Path-to-the root for the switch

53-1001762-01 specifications

Brocade Communications Systems 53-1001762-01 is a sophisticated network switch designed primarily for enterprise-level data centers and modern virtualization environments. This device exemplifies the company’s dedication to providing high-performance, reliable, and scalable network solutions.

One of the main features of the Brocade 53-1001762-01 is its exceptional layer 2 and layer 3 switching capabilities. This allows for seamless connectivity across various network layers, optimizing data traffic management and improving overall network efficiency. With its support for multiple protocols, including Ethernet and Fibre Channel, the switch is adaptable to various networking needs.

In terms of technology, the Brocade 53-1001762-01 leverages advanced ASIC (Application-Specific Integrated Circuit) technology, ensuring low latency and high throughput. This is particularly beneficial for applications that require real-time data processing, such as video streaming, high-frequency trading, and large-scale database operations. The switch supports high bandwidth throughput, enabling organizations to handle increased data loads without compromising performance.

Scalability is another critical characteristic of the Brocade 53-1001762-01. It allows for stackable configurations, enabling businesses to easily expand their network infrastructure as demands grow. The device supports Virtual Chassis technology, which allows multiple switches to be managed as a single unit, simplifying network management and reducing operational costs.

Security features in the Brocade 53-1001762-01 address the growing need for robust protection against cyber threats. It supports various security protocols and provides tools for network segmentation, traffic encryption, and secure access control. These features are crucial for complying with regulatory standards and safeguarding sensitive data in enterprise environments.

Moreover, the Brocade 53-1001762-01 is designed with energy efficiency in mind, presenting organizations with a sustainable solution that reduces power consumption without sacrificing performance. This is particularly important as businesses seek to minimize their carbon footprint and operational costs.

In summary, the Brocade Communications Systems 53-1001762-01 is a versatile, high-performance network switch that stands out for its advanced networking capabilities, scalability, robust security features, and energy efficiency. It empowers organizations to build and maintain efficient, secure, and future-proof networking environments.

Contents

Converged Enhanced Ethernet Command Reference 53-1001762-01 March Brocade Communications Systems, Incorporated Contents Chapter Vlan Commands Chapter Interface Commands Clear counters access-list mac Mac access-list extendedMac access-list standard Mac access-group Vii Ip igmp snooping enable global version Ip igmp snooping enable Vlan versionIp igmp snooping mrouter-timeout Ip igmp snooping querier enable Dot1x authentication Dot1x enableDot1x reauthenticate interface Dot1x reauthentication Converged Enhanced Ethernet Command Reference About This Document Supported hardware and software Bold text Italic text Key terms Additional information Getting technical help FT00X0054E9 Serial number label is located as follows Document feedback Page CLI Basics CLI command modes Accessing the CEE CLI command modes Exec Standard Access Control Lists Extended Access Control Lists L2 ACL commands Copy Copy startup-config Synopsis Copy startup-config destination-file-url OperandsDefaults Command Modes Description Usage Guidelines Destination-file-url Delete filename See Also Copy startup-configFilename Synopsis dir Operands DirSee Also Delete Disable DisableSee Also Enable, end, exit Switch#disable Command Do commandSee Also None Enable EnableSee Also Disable Switch enable Switch# See Also Exit , disable , enable Switchconfig#interface tengigabitethernet 0/0Switchconf-if-te-0/0# end End Switch#erase flash Erase flashErases all the files from the Flash See Also Dir , delete Exec-timeout Exec-timeout minutes secondsMinutes Seconds Exits the current mode and returns to the previous mode See Also End , enable , disableExit Exit Executes Fabric OS commands from the from the cmsh shell Fos commandSpecifies the Fabric OS command Fos Supportsave switchshow zoneshow Switch#fos switchshow Line console Configures the Line configuration modeSee Also Show line First number Line vty first number last numberLast number Switch# pwd PwdPwd Flash Rename Rename sourcefile renamedfileSourcefile Renamedfile Switch#show calendar Show calendarShow calendar UTC Tue Feb 14 Show clock Show clockDisplays the time and date from the system clock See Also Show calendar Show environment Synopsis Show environment Operands Show file Filename See Also Line vty, line console, exec-timeout Last line number Displays the internal syslog buffer of the switch Switch#show loggingShow logging Show logging Synopsis Show media Operands Show mediaSee Also Show media interface, show media linecard Show media interface Synopsis Show media interface Operands TengigabitethernetSlot Port Show media linecard Synopsis Show media linecard number OperandsNumber See Also Show media interface, show media Switch#show processes cpu summary Show processes cpuShow processes cpu To show CPU usage information by individual processes Switch#show processes memory summary Switch#show processes memoryShow processes memory Show processes memory Show running-config Show running-configSee Also Show startup-config Show startup-config Show startup-configDisplays the content of the startup configuration file Switch#show startup-config Show system Displays system informationSynopsis Show system Operands To display the system information Show tech-support Synopsis Show tech-support Operands To display information on users logged into the switch Switch#show usersShow users Show users Synopsis Show version Operands Show versionSee Also Show system Terminal length Synopsis Terminal length number Operands Switch#terminal monitor Switch#terminal no monitorTerminal monitor Terminal monitor Removes the startup configuration from the switch Switch#write eraseWrite erase Write erase Write memory Write memorySee Also Write erase Switchconfig#interface vlan Switchconf-if-vl-777# fcf forwardFcf forward See Also Interface vlan Interface vlan See Also Interface switchport , fcf forward , shutdownVlanid Switchport Show interfacePort-channel number See Also Show interface vlan Show vlan Displays information about a specific Vlan interfaceSynopsis Show vlan vlanid brief classifier fcoe Operands Vlanid Show vlan classifier Operands Group number Synopsis switchport no switchport Operands none SwitchportTo remove an interface from Layer 2 mode Switchport access Sets the Layer 2 interface as accessInterface configuration mode To the default Vlan Switchport converged Allowed vlanAdd vlanid All Switchport mode Switchport modeSets the mode of the Layer 2 interface To set the mode of the interface to trunk Switchport trunk Switchport trunkSwitchconf-if-te-0/19#switchport truck allowed vlan add Switchconf-if-te-0/19#switchport truck allowed vlan remove Vlan classifier activate group Activates a Vlan classifier groupNumber Vlan vlanid Vlan classifier group Vlan classifier groupAdds and deletes rules to a Vlan classifier group Add rule number Vlan classifier rule Vlan classifier rule Access-list mac accesslistname Clear countersModes User Guidelines Example Clear counters See Also Show interfaces Description Switchconf-if-te-0/1#description converged101Line Specifies the Vlan number. The range of valid values is See Also Show interface, interface vlan Synopsis Mtu size Operands MtuSize Specifies to display a specific 10 Gbps Ethernet interface Specifies to display a valid slot numberSpecifies to display a valid port number Specifies to display information for Layer 2 interfaces To display Layer 2 information for all interfaces Switch#show interface switchportSee Also Show ip interface There are no usage guidelines for the command Switch#show ip interface briefShow ip interface Vlanid brief See Also Show interface Disables the selected interface To enable an interfaceShutdown See Also Interface, show ip interface, show interface Link Layer Discovery Protocol Commands Advertise dcbx-fcoe-app-tlv Advertise dcbx-fcoe-logical-link-tlv Advertise dcbx-tlv Length, Values TLVs Advertise dot1-tlv Advertise dot3-tlv Advertise optional-tlv Advertises the optional Type, Length, and Value TLVs Clear lldp neighbors See Also Show lldp neighbors Clear lldp statistics StatisticsInterfaces To clear all the Lldp statistics for all interfaces Debug lldp packet Interface tengigabitethernetBoth Detail Switchconf-lldp#description Brocade-LLDP Specifies a string that contains the description of the Lldp Hello Hello secondsNo hello Operands Seconds Switchconf-if-te-0/1# lldp dcbx-version cee Lldp dcbx-version Lldp disable Lldp disableSwitchconf-if-te-0/1#lldp disable Switchconf-if-te-0/1#lldp fcoe-priority-bits 0xff Lldp fcoe-priority-bitsSets the priorities on which FCoE traffic will be allowed Value Switchconf-if-te-0/1#lldp profile test Lldp profileLldp profile Name Sets the Lldp mode on the switch Switchconf-lldp# mode txMode See Also Show lldp Multiplier Synopsis Multiplier value No multiplier OperandsValue See Also Hello Defaults none ProfileSynopsis Profile name No profile name Operands Name Switchconfig#no protocol lldp Protocol lldp Displays the Lldp debugging status on the switch Show debug lldpLldp debugging status Interface te0/0 Transmit Receive Detail Show lldp interface Switch#show lldp interface Tengigabitethernet 0/0Displays the Lldp status on the specified interface Show lldp neighbors Show lldp neighborsDetail MaxVersion SeqNo 2 AckNo Dcbx ETS OperVersion Will Show lldp statistics Show lldp statisticsStatistics for all interfaces To display Lldp statistics on the specified interface System-description Line System-description LineSets the global system description specific to Lldp Characters System-name System-nameSets the global system name specific to Lldp Synopsis System-name name Operands Channel-group No channel-group OperandsMode Type Channel-group Switchconf-if#channel-group 4 mode activeSee Also Interface port-channel Synopsis Clear lacp number counters Operands CountersClears traffic counters To clear the Lacp counters for a specific port-channel Clear lacp counters Switch#clear lacp countersSee Also Show lacp Debug lacp See Also Show debug lacp To clear the configured Lacp system-priority Switchconfig#lacp system-prioritySwitchconfig#no lacp system-priority Lacp system-priority Lacp timeout Switchconf-if-te-0/1 #lacp timeout short Show lacp counter Synopsis Show lacp counter number OperandsPort-channel or a specific interface To show the Lacp counters for port-channel Show lacp-sys-id Switch#show lacp sys-idSystem 8000,00-05-1e-76-1a-a6 Channel-group number Show port-channelLoad-balance Show port-channel Static mac-addr Mac-address-tableForward Mac-address-table To set the aging time to 10 minutes Switchconfig#mac-address-table aging-timeSee Also Show mac address-table static Show mac-address-table Aging-timeCount Linecard Switch#show mac-address-table aging-time Switch#show mac-address-table dynamicTo display the aging time for a specific MAC address table To display a dynamic MAC address table Clear counters access-list mac See Also Show mac access-list , show statistics access-listOperands Interface Deny extended ACLs Ipv4 countFcoe ipv4 Operands Any Ipv4 Deny extended ACLs See Also Mac-access-list extended , permit Deny standard ACLsSynopsis Deny Macacl any count No deny Macacl any Operands Guidelines Example Mac access-list extended CommandSee Also Deny, permit , show access-lists Modes Description Mac access-list standard Creates and assigns a name to the standard MAC access listSee Also Deny , permit , show access-lists Limit is Mac access-group Switchconf-if#mac access-group macacl2Switchconf-if#no mac access-group macacl2 Specifies to filter inbound packets only Permit extended ACLs Fcoe ipv4 countPage Enables the counting of the packets matching the rule See Also Mac-access-list extended , no seqSwitchconf-macl-std#permit 0022.3333.4444 count Switchconf-macl-std#no permit Resequence access-list mac See Also Mac-access-list extended , seqSeqnum Increment Seq extended MAC ACLs EtherType arp fcoe ipv4 countNo seq value Operands Permit or deny See Also Deny, permit, resequence Switchconf-macl-std#seq 100 deny 0022.3333.4444 count Switchconf-macl-std#seq 1000 permit 0022.3333.4444 countSeq standard MAC ACLs To delete a filter rule in a MAC standard ACL See Also Show running-config , show statistics Show mac access-groupOperands Interface See Also Show running-config , show mac access-group Show statistics access-list macSlot/port vlan vlanid Bridge-priority Specifies the priority of the bridgePriority Specifies the bridge priority. The range of valid values is To disable Cisco interoperability on a switch Switchconf-mstp#cisco-interoperability enableSwitchconf-mstp#cisco-interoperability disable Cisco-interoperability Clear spanning-tree counter See Also Show spanning-tree Debug spanning-tree Error-disable-timeout enable Error-disable-timeout enableSee Also Error-disable-timeout interval Switchconf-rstp#error-disable-timeout enable Error-disable-timeout interval Error-disable-timeout intervalSynopsis Error-disable-timeout interval seconds Operands See Also Error-disable-timeout enable Forward-delay Synopsis Forward-delay seconds No forward-delay OperandsDefault is 15 seconds Protocol Spanning Tree mode Hello-time See Also Forward-delay,max-ageSynopsis Hello-time seconds No hello-time Operands Instance instanceid vlan vlanid priority priorityid No instance OperandsInstanceid Priority priorityid Max-age Hopcount Max-hopsSee Also Show spanning-tree mst Synopsis Port-channel path-cost custom standard Operands Port-channel path-costCustom Protocol spanning-tree Protocol spanning-tree Region Region region-nameNo region Operands Region-name Revision See Also Region, show spanning-tree Show spanning-tree Synopsis Show spanning-tree Operands See Also Show spanning-tree interface Show spanning-tree brief Switch#show spanning-tree briefShow spanning-tree brief Show spanning-tree interface Show spanning-tree interfaceSee Also Show spanning-tree brief Show spanning-tree mst brief Show spanning-tree mst briefInformation in brief Synopsis Show spanning-tree mst brief Operands There are no default configuration for this command To display Mstp information on the switch in detailSwitch#show spanning-tree mst detail Show spanning-tree mst detail Show spanning-tree mst detail Show spanning-tree mst detail Show spanning-tree mst instance Show spanning-tree mst interface To enable STP globally Switchconf-rstp#shutdownSwitchconf-rstp#no shutdown Tree Protocol STP globally Enables automatic edge detection Switchconf-if-te-0/1# spanning-tree autoedgeSpanning-tree autoedge Spanning-tree autoedge Synopsis Spanning-tree cost cost Operands Spanning-tree costCost Spanning-tree edgeport Spanning-tree edgeportTo set the edgeport Bpdu filter for the port To guard the port against reception of BPDUs Path-to-the root for the switch Switchconf-if-te-0/1#spanning-tree guard rootSpanning-tree guard root Spanning-tree guard root Configures the hello-time in seconds on the interface See Also Forward-delay , max-age , show spanning-treeSwitchconf-if-te-0/1#spanning-tree hello-time Spanning-tree hello-time Spanning-tree instance Spanning-tree link-type Switchconf-if-te-0/0#spanning-tree link-type sharedSpanning-tree link-type Spanning-tree portfast Spanning-tree portfastTo set the Port Fast Bpdu filter for the port To guard the port against the reception of BPDUs Spanning-tree priority Spanning-tree priorityChanges an interfaces spanning-tree port priority Is 0-240. Port priority is in increments Switchconf-if-te-0/1#spanning-tree restricted-role Spanning-tree restricted-roleSpanning-tree restricted-role Restricts the role of the port from becoming a root port Spanning-tree restricted-tcn Switchconf-if-te-0/1#spanning-tree restricted-tcnSpanning-tree restricted-tcn Enables or disables spanning tree on the interface To enable spanning tree on VlanSpanning-tree shutdown Spanning-tree shutdown Spanning-tree tc-flush-standard Switchconfig#no spanning-tree tc-flush-standardSpanning-tree tc-flush-standard Before pausing for 1 second. The range of valid values is Switchconf-mstp#transmit-holdcountTransmit-holdcount Transmit-holdcount There are no defaults for this command Clear ip igmp groupMulticast group Information. The range of valid values is Switch#clear ip igmp groups Clear ip igmp groups Debug ip igmp all Displays all Igmp informationDisplays all values Example none See Also None Default value is 1000 milliseconds Ip igmp last-member-query-intervalSets the last member query interval Milliseconds Sets the query interval Ip igmp query-intervalSynopsis Ip igmp query-interval seconds Operands Ip igmp query-max-response-time Synopsis Ip igmp query-max-response-time seconds Operands Ip igmp snooping enable global version Switchconfig# ip igmp snooping enable Ip igmp snooping enable Vlan version Switch#ip igmp snooping enable Enables snooping fast-leave Ip igmp snooping fast-leave Ip igmp snooping mrouter See Also Show ip igmp snooping mrouter Configures the mrouter-time-out Ip igmp snooping mrouter-timeoutSynopsis Ip igmp snooping mrouter-timeout seconds Operands Ip igmp snooping querier enable Switchconf-if-vl-1#ip igmp snooping querier enable Configures the static group membership entries Ip igmp static-group Show debug ip igmp Show ip igmp groups Displays the IGMPv3 source information Show ip igmp snooping Displays Igmp snooping informationMrouter interface Statistics interface Show running-config igmp Displays the Igmp configuration Show running-config igmp Rmon alarm See Also Rmon event , show rmon Owner name Rmon collection statsSee Also Show rmon statistics Rmon event Description wordLog Trap word Operands Alarms EventsLogs Statistics Switch#show rmon events See Also Rmon alarm , rmon eventTo display the Rmon events Synopsis Cee name No cee Operands CeeSee Also cee-map Precedence number Cee-mapSee Also Cee , priority-group-table , priority-table Weight weight Priority-group-tablePgid Pfc Synopsis Priority-tableNo priority-table Switchconf-ceemap#priority- 1 0 1 1 1 1 See Also Cee , cee-map , priority-group-table Synopsis Qos cos value No qos cos Operands Qos cosSee Also Show qos , qos map , qos trust Synopsis Qos cos-mutation name No qos cos-mutation Operands Qos cos-mutationSee Also Qos map cos-mutation , show qos maps Switchconf-if-te-0/1#qos cos-traffic-class test Qos cos-traffic-classApplies a CoS-to-Traffic Class QoS map on an interface To apply a CoS-to-Traffic Class QoS map to an interface Qos map cos-mutation No qos map cos-mutation name See Also Qos cos-mutation , show qos maps No qos map cos-traffic-class Qos map cos-traffic-classSee Also Qos trust , qos map cos-mutation Qos map cos-traffic-class There are no usage guidelines for this command Qos queue multicast schedulerGuidelines Examples Bandwidth, and Traffic Class 3 getting 40 percent bandwidth Qos queue scheduler No qos queue schedulerStrict-priority Dwrr Weight5 Weight6Weight7 Switchconfig#no qos queue scheduler Qos rcv-queue multicast rate-limit Qos rcv-queue multicast rate-limitRate Burst burst-size Qos rcv-queue multicast threshold TdtoTdt1 Tdt2 Synopsis Qos trust cos No qos trust Operands Qos trust cosSee Also Qos cos , show qos Synopsis Show cee maps name Operands Show cee mapsSee Also cee, cee-map Show qos flowcontrol interface Linecard portsetChip See Also Show qos interface , show cee maps Switch#show qos interface tengigabitethernet 0/1 Show qos interfaceShow qos interface Scheduler policy See Also Cee-map , priority table Cos-traffic-class name Show qos mapsSee Also Qos maps , show qos interface Switch#show qos queue interface tengigabitethernet 0/2 Show qos queue interfaceShow qos queue interface Packets and bytes sent and received for each priority Show qos rcv-queue interface See Also Show qos rcv-queue multicast Show qos rcv-queue multicast See Also Show qos rcv-queue interface Switch#clear dot1x statistics Clear dot1x statisticsClears all dot1x statistics See Also Clear dot1x statistics interface Slot Clear dot1x statistics interfacePort Enables dot1x on a port Dot1x authenticationSwitchconf-if-te-0/1# dot1x authentication Dot1x enable 13 dot1x enableEnables 802.1X authentication globally Switchconfig# dot1x enable Switchconf-if-te-0/1# dot1x port-control auto Controls the authorization of a port stateDot1x port-control Switchconfig#interface tengigabiethernet 0/1 Switchconf-if-te-0/1# dot1x quiet-periodDot1x quiet-period 13 dot1x quiet-period Dot1x reauthenticate interface Initiates reauthentication on a specified interfaceSynopsis Dot1x reauthenticate interface name Operands Specifies the name of the interface Dot1x reauthentication 13 dot1x reauthenticationEnables reauthentication on a port Switchconf-if-te-0/1# dot1x reauthentication To the default setting To set the maximum number of reauthentication attempts toTo set the reauthentication maximum to the default value Dot1x reauthMax Dot1x timeout re-authperiod 13 dot1x timeout re-authperiodSets the number of seconds between reauthorization attempts Synopsis Dot1x timeout re-authperiod seconds Operands Dot1x timeout server-timeout Sets the authentication sever response timeoutSynopsis Dot1x timeout server-timeout seconds Operands Default timeout is 30 seconds Dot1x timeout supp-timeout 13 dot1x timeout supp-timeoutSynopsis Dot1x timeout supp-timeout seconds Operands Switchconf-if-te-0/1#dot1x timeout supp-timeout Dot1x timeout tx-period Synopsis Dot1x timeout tx-period seconds OperandsSwitchconfig-if#dot1x timeout tx-period Range of valid values is Show dot1x Switch#show dot1xDisplays the overall state of dot1x on the system Show dot1x all Switch#show dot1x allDisplays detailed information for all of the ports See Also None Synopsis Show dot1x diagnostics interface name Operands Show dot1x diagnostics interfaceSpecifies the name of the interface Show dot1x interface Displays the state of a specified interfaceSynopsis Show dot1x interface name Operands To display the state of 10 Gbps Ethernet interface 0/1 Synopsis Show dot1x session-info interface name Operands Show dot1x session-info interface802.1X Session info for te0/1 Displays the statistics of a specified interface Show dot1x statistics interfaceSynopsis Show dot1x statistics interface name Operands

9 spanning-tree guard root

spanning-tree guard root

path-to-the root for the switch.

Operands

switch(conf-if-te-0/1)#spanning-tree guard root

See Also

spanning-tree cost

Converged Enhanced Ethernet Command Reference

53-1001762-01 specifications