[f-nsp] MSTP best practices?

Tomasz Szewczyk tomeks at man.poznan.pl
Tue Feb 2 03:28:21 EST 2010 

Hi,

Try not to use (M)STP, but if you have to:
1) Limit the scope of STP-like domain
2) Enable BPDU filter on "customer" facing interfaces (otherwise prepare 
to almost constant root bridge negotiation)
3) If you want to use multivendor environment look very carefully on 
vlan to MSTP instance mapping
For example on Foundry/Brocade FWS switches some vlan id's are 
restricted so you're not able to map/bind it to MSTP instance, on Cisco 
you can map any vlan. Becasue you have to use same vlan to MSTP mapping 
(configuration digest) in the same region - this can split your network 
into two regions.
4) Make sure you aways know where root node is for each instance (just 
configure it manually to be 100% sure)
5) 2 instances + default seems to work quite stable on 10-20 switches 
(just my experience) and gives a kind of resource usage balancing.

My experiences with STP-like technologies are that you have to be very 
restrictive - don't enable it to customer and be sure he will not create 
a loop over your network. The worst thing (nightmare) is to debug 
STP/MSTP when something goes wrong. If you want to apply it to big LAN, 
you have a chance to win this game if you'll be careful. But if you have 
a plan to build metro network (or something more) just forget about this 
(if you know Brocade devices try to switch to MLX/CES platform and run 
MPLS :-)


Cheers

Tomek

Brashear, Jonathan pisze:
> Hello all, I'm working on a project that involves heavy use of MSTP in a flat L2 environment.  If anybody has some documents on best practices for deploying MSTP(especially in a multi-vendor environment), I'd appreciate any help.  It seems fairly straight-forward, but better safe than sorry. :)
>
> Jonathan Brashear
> Strategic Business Systems, Inc.
> 13800 Coppermine Road, Suite 400 | Herndon, VA 20171
> Corporate: 703.766.8950 | Cell: 214.850.5986 
> Please visit our web site at www.sbsplanet.com
>
>
>
>
>
> The information contained in this transmission may contain privileged and confidential information. 
> It is intended only for the use of the person(s) named above. If you are not the intended  
> recipient, you are hereby notified that any review, dissemination, distribution or  
> duplication of this communication is strictly prohibited. If you are not the intended recipient, 
> please contact the sender by reply email and destroy all copies of the original message. 
> To reply to our email administrator directly, please send an email to postmaster at sbsplanet.com.
> _______________________________________________
> foundry-nsp mailing list
> foundry-nsp at puck.nether.net
> http://puck.nether.net/mailman/listinfo/foundry-nsp
>
>

More information about the foundry-nsp mailing list