we use more than 25 G3G124-24P switches as edge devices and every system is configured with a complex configuration (MAC- and 802.1X authentication, maclock, lldp and much more) and I'm not sure if I do something wrong or if it's a bug:
Therefore I take an empty (default config) G3G124-24P with the last FW 06.61.18.0001 and configure the switch with following commands:
set spantree version rstp
set spantree adminedge ge.1.1-24 true
set spantree spanguard enable
set spantree spanguardtimeout 0
After this I connect a Laptop at some ports (ge.1.1 and ge.1.2) and I can see that the port become up and the LED is on - everythig is fine up to this.
Then I take a short cable and connect one end at ge.1.1 and the other at ge.1.2 to check if spanguard is blocked one of the port.
When I plug-in the cable the port link LED goes on and after 1 second or two it goes off.
When I remove the loop between both ports and add the laptop there only one port works and showes the "status up" and the LED is on.
But when I check the "show spantree spanguardlock" output the switch told me that no port is blocked.
show spantree spanguardlock
Port ge.1.1 is Unlocked
Port ge.1.2 is Unlocked
So it is not possible for us to find out these ports that are blocked by spanguardlock ("set spantree spanguardtimeout 0" mean, that the port will stay blocked).
I've seen this on three different edge switches (all G3G with FW 06.61.18.0001) and all our switches are configured to send a trap if spanguard become active.
Can someone confirm this and is only FW 06.61.18.0001 affected?
I'm sure that it works in the past with an older FW release but cannot remember.