Enabling BPDU Guard on Specified Interfaces
Command or Action
Step 3
switch(config)# exit
Step 4
switch# show spanning-tree summary
Step 5
switch# copy running-config startup-config
This example shows how to enable BPDU Guard on all spanning tree edge ports:
switch# config t
switch(confiig)# spanning-tree port type edge bpduguard default
switch(config)# exit
switch#
Enabling BPDU Guard on Specified Interfaces
Enabling BPDU Guard shuts down the port if it receives an invalid BPDU. You can configure BPDU Guard
on specified interfaces as follows:
• spanning-tree bpduguard enable —Unconditionally enables BPDU Guard on the interface.
• spanning-tree bpduguard disable —Unconditionally disables BPDU Guard on the interface.
• no spanning-tree bpduguard —Enables BPDU Guard on the interface if it is an operational edge port
Note
In Cisco NX-OS Release 6.2(10) and later releases, the port will be error disabled when a BPDU is received
on any VLAN and BPDU Guard is enabled on the port.
Before You Begin
• Ensure that you are in the correct VDC (or enter the switchto vdc command).
• Ensure that STP is configured.
• For a trunk port, configure an allowed VLAN list using the switchport trunk allowed vlan vlan-list
Cisco Nexus 7000 Series NX-OS Layer 2 Switching Configuration Guide, Release 5.x
192
and if the spanning-tree port type edge bpduguard default command is configured.
command.
Configuring STP Extensions Using Cisco NX-OS
Purpose
Exits global configuration mode.
(Optional)
Displays summary STP information.
(Optional)
Copies the running configuration to the startup configuration.