14-4
Software Configuration Guide—Release 12.2(25)SG
OL-7659-03
Chapter14 Configuring STP Features
Enabling Loop Guard
Follow these guidelines when using loop guard:
Do not enable loop guard on PortFast-enabled or dynamic VLAN ports.
Do not enable loop guard if root guard is enabled.
Loop guard interacts with other features as follows:
Loop guard does not affect the functionality of UplinkFast or Backb oneFast.
Enabling loop guard on ports that are not connected to a point-to-point link will not work.
Root guard forces a port to always be the root port. Loop guard is effective only if the port is a root
port or an alternate port. You cannot enable loop guard and root guard on a port at the same time.
Loop guard uses the ports known to spanning tree. Loop guard can take advantage of logical ports
provided by the Port Aggregation Protocol (PAgP). However, to form a channel, all the physical
ports grouped in the channel must have compatible configurations. PAgP enforces uniform
configurations of root guard or loop guard on all the physi cal ports to form a channel.
These caveats apply to loop guard:
Spanning tree always chooses the first operational port in the channel to send the BPDUs. If that
link becomes unidirectional, loop guard blocks the channel, even if other links in the channel
are functioning properly.
If a set of ports that are already blocked by loop guard are grouped together to form a channel,
spanning tree loses all the state information for those ports and the new channel port may obtain
the forwarding state with a designated role.
If a channel is blocked by loop guard and the channel breaks, spanning tree loses all the state
information. The individual physical ports may obtain the forwarding state with the designated
role, even if one or more of the links that formed the channel are unidirectional.
Note You can enable UniDirectional Link Detection (UDLD) to help isolate the link failure.
A loop may occur until UDLD detects the failure, but loop guard will not be able to
detect it.
Loop guard has no effect on a disabled spanning tree instance or a VLAN.
Enabling Loop Guard
You can enable loop guard globally or per port.
To enable loop guard globally on the switch, perform this task:
This example shows how to enable loop guard globally:
Switch(config)# spanning-tree loopguard default
Switch(config)# Ctrl-Z
Command Purpose
Step1 Switch(config)# spanning-tree loopguard default Enables loop guard globally on the switch.
Step2 Switch(config)# end Exits configuration mode.
Step3 Switch# show spanning tree interface 4/4 detail Verifies the configuration impact on a port.