 | Copyright © 2008, Juniper Networks, Inc. All rights reserved. Trademark Notice. | |
Root protect helps to enforce the STP root bridge placement in a Layer 2 switched network. Enable root protect on interfaces that should not receive superior BPDUs from the root bridge. Typically, these ports are STP-designated ports on an administrative boundary.
If the bridge receives superior STP BPDUs on a port that has root protect enabled, that port is transitioned to a root-prevented STP state and the interface is blocked. This prevents a bridge that should not be the root bridge from being elected the root bridge.
After the bridge stops receiving superior STP BPDUs on the port with root protect enabled and the received BPDUs time out, that port is transitioned back to the STP designated port state.
When root protect is enabled on an interface, it is enabled for all STP instances on that interface. The interface is blocked only for those instances that receive superior BPDUs.
By default, root protect is disabled. To enable root protect, include the following statement:
-
no-root-port;
You can configure this statement at the following hierarchy levels:
| Copyright © 2008, Juniper Networks, Inc. All rights reserved. Trademark Notice. | |