This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Extreme Networks
- Community List
- Switching & Routing
- ExtremeSwitching (EXOS/Switch Engine)
- Help, I need to configure elrp
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Help, I need to configure elrp
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
07-11-2017 06:29 PM
Hello All,
I need configure elrp in switch X460-24t version 16.1.4.2 patch1-7 but i don't know what option to choose, i have this options:
Thanks everyone for your help
I need configure elrp in switch X460-24t version 16.1.4.2 patch1-7 but i don't know what option to choose, i have this options:
- Log-and-trap disable-port egress permanent
- Log disable-port ingress permanent
Thanks everyone for your help
Solved! Go to Solution.
1 ACCEPTED SOLUTION
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
01-09-2018 08:56 PM
That makes sense, all our user ports trunk voice vlan but not trunk for the data side. I appreciate the explanation.
20 REPLIES 20
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
01-09-2018 08:56 PM
Our VM environment and MLAG live on the 2 blackdiamonds and 10G DC670's that terminate to our cores. I'm thinking something could happen if hardware issue caused a loop regarding MLAG and ELRP would keep a loop from happening either by user error or by issue. Does this help? Thanks Chad.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
01-09-2018 08:56 PM
I'm not sure I fully understand. If you enable egress on ALL edge ports, and have confidence that the other ports (i.e core and aggregation layer) are secure and will remain loop-free, you don't have to enable ELRP there. If not, then yes you could enable ELRP on egress going to your downstream edge switches. However, any loop detected on these ports could segment the entire downstream switch from the network.
When using ELRP at the core/aggregation layer it can make more sense to use ingress blocking with the exclude list excluding critical uplinks/downlinks.
When using ELRP at the core/aggregation layer it can make more sense to use ingress blocking with the exclude list excluding critical uplinks/downlinks.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
01-09-2018 08:56 PM
So best practice I should could enable ELRP blocking on edge switch access ports then on the uplinks that have LAG's to MLAGs to the cores enable egress blocking? Thanks Chad
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
01-09-2018 08:56 PM
Generally, for egress blocking, yes enable it only on the edge ports
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
07-13-2017 07:09 AM
Hi,
I prefer to enable ELRP on the access ports, but not on uplinks, and then disable the egress port if a loop is detected.
If e.g. a loop between two access switches is created, ELRP will see packets returning via the uplinks. The uplinks are usually exempted from being disabled by ELRP (otherwise the whole switch would be disabled, not just the access port that is part of the loop). Thus it does not help to act on the ingress port . But the egress port can (and should) be disabled in this situation.
Thanks,
Erik
I prefer to enable ELRP on the access ports, but not on uplinks, and then disable the egress port if a loop is detected.
If e.g. a loop between two access switches is created, ELRP will see packets returning via the uplinks. The uplinks are usually exempted from being disabled by ELRP (otherwise the whole switch would be disabled, not just the access port that is part of the loop). Thus it does not help to act on the ingress port . But the egress port can (and should) be disabled in this situation.
Thanks,
Erik
