Solved

ers 3500 slpp-guard don`t work

  • 27 August 2019
  • 2 replies
  • 132 views

Good day,
ers3500 does not enable slpp-guard, in the log:
% Cannot modify settings
% SLPP-guard not enabled on port 1 - no filters / filter precedences available.
At the same time, on the ers3600, the ers5500 turns on and works. Please tell me what the error is, what filters are missing?
Thank you.
icon

Best answer by Dilraj Singh Khalsa 27 August 2019, 09:00

Hi,

SLPP-guard cannot be enabled on edge ports of the switch Due to availability of only four precedence values per port in ERS 3500, which are occupied by ARP, DHCP and two QoS. By enabling SLPP-guard without deleting the default precedence values an error is generated as you mentioned:

SLPP-guard can be enabled by making precedence values available on edge ports of ERS 3500 series switch, i.e. to free the precedence values occupied by DHCP, QoS.
To set free precedence occupied by DHCP execute below command:
code:
3510GT-PWR+(config)#no ip dhcp client
3510GT-PWR+(config)#no ip dhcp-relay
3510GT-PWR+(config)#no ip dhcp-server
3510GT-PWR+(config)#no ip dhcp-snooping


To set free precedence occupied by QoS execute below command:
code:
3526T-PWR+(config)#qos if-assign ?
name Specify name of interface group
port Specify list of ports
3526T-PWR+(config)#qos if-assign po
3526T-PWR+(config)#qos if-assign port ?
name Specify name of interface group
3526T-PWR+(config)#qos if-assign port na
3526T-PWR+(config)#qos if-assign port name $qosDisabledIfcs


It can be seen that after executing above command precedence are free.
code:
3510GT-PWR+(config)#show qos diag

Unit/Port Mask Precedence Usage
4 3 2 1
--------- ---------------
1/1 AR
1/2 AR
1/3 AR
1/4 AR
1/5 AR

AR=ARP

Please note, Precedence value set for ARP is permanently used by ARP which cannot be removed.
Please verify if the affected switch is configured with DHCP relay or QoS.

DILRAJ
View original

2 replies

Userlevel 2
Hi,

SLPP-guard cannot be enabled on edge ports of the switch Due to availability of only four precedence values per port in ERS 3500, which are occupied by ARP, DHCP and two QoS. By enabling SLPP-guard without deleting the default precedence values an error is generated as you mentioned:

SLPP-guard can be enabled by making precedence values available on edge ports of ERS 3500 series switch, i.e. to free the precedence values occupied by DHCP, QoS.
To set free precedence occupied by DHCP execute below command:
code:
3510GT-PWR+(config)#no ip dhcp client
3510GT-PWR+(config)#no ip dhcp-relay
3510GT-PWR+(config)#no ip dhcp-server
3510GT-PWR+(config)#no ip dhcp-snooping


To set free precedence occupied by QoS execute below command:
code:
3526T-PWR+(config)#qos if-assign ?
name Specify name of interface group
port Specify list of ports
3526T-PWR+(config)#qos if-assign po
3526T-PWR+(config)#qos if-assign port ?
name Specify name of interface group
3526T-PWR+(config)#qos if-assign port na
3526T-PWR+(config)#qos if-assign port name $qosDisabledIfcs


It can be seen that after executing above command precedence are free.
code:
3510GT-PWR+(config)#show qos diag

Unit/Port Mask Precedence Usage
4 3 2 1
--------- ---------------
1/1 AR
1/2 AR
1/3 AR
1/4 AR
1/5 AR

AR=ARP

Please note, Precedence value set for ARP is permanently used by ARP which cannot be removed.
Please verify if the affected switch is configured with DHCP relay or QoS.

DILRAJ
Thank you very much for your help, everything is ok.

Reply