Cisco NX-OS/IOS STP Comparison

From DocWiki

Revision as of 06:23, 22 January 2011

Objective

This tech note outlines the main differences in Spanning-Tree Protocol (STP) support between Cisco® NX-OS Software and Cisco IOS® Software. Sample configurations are included for Cisco NX-OS and Cisco IOS Software for some common features to demonstrate the similarities and differences. Please refer to the NX-OS documentation on Cisco.com for a complete list of supported features.

STP Overview

STP is a standards based link-layer protocol originally defined in IEEE 802.1d that runs on switches to prevent forwarding loops when using redundant layer-2 network topologies. Newer variants of STP have been developed called Rapid Spanning Tree protocol (RSTP) defined in IEEE 802.1w and Multiple Spanning Tree protocol (MST) defined in IEEE 802.1s that are enhanced for better scalability and converge faster than the original version.

Important Cisco NX-OS and Cisco IOS Software Differences

In Cisco NX-OS:

• STP supports stateful process restarts and In-Service-Software-Upgrades (ISSU) if two supervisors are present in a chassis.
• Rapid-PVST+ and the MST protocols are supported.
• Rapid-PVST+ is enabled by default.
• VLANs 3968-4047,4094 are reserved for internal use. Cisco IOS Software reserves VLANs 1002-1005,4095 for internal use by default.
• The STP extended system-id is always enabled. Cisco IOS software requires the global spanning-tree extend system-id configuration command.
• The STP port types are identified with the port type designation as opposed to the portfast designation in Cisco IOS Software.

Things You Should Know

The following list provides some additional facts about the Cisco NX-OS that should be helpful when designing, configuring, and maintaining a network configured with the STP.

• Rapid-PVST+ is interoperable with the 802.1d STP.
• Rapid-PVST+ is interoperable with MST. (Enabled by default)
• Only one STP can be enabled per VDC.
• Bridge Assurance is enabled globally by default, but is disabled on an interface by default.
• Bridge Assurance can be enabled for an interface using the spanning-tree port type network interface command.
• The clear spanning-tree counters command clears the counters for an STP interface or a VLAN.
• STP enhancements such as BPDU Guard, Loop Guard, Root Guard, and BPDU Filtering are supported.

Spanning-Tree best practices are applicable to both Cisco NX-OS and Cisco IOS Software

• Do not disable STP. Even if the layer-2 topology does not require STP, it should always be enabled as a safeguard for configuration and/or cabling errors.
• Changing the STP mode can disrupt traffic.
• Enabling Bridge Assurance is recommended. However, only enable Bridge Assurance on layer-2 links if both devices on each end of the link support it.
• Typically the core/backbone devices should be configured as the primary and secondary root bridges.
• The default bridge priority is 32,768 (plus the VLAN #). The lower the value, the more likely it will become the root bridge.
• Configure 802.1q trunk ports as edge trunk port type when connecting to layer-3 hosts such as firewalls, load-balancers, or servers for faster convergence.

Configuration Comparison

The following sample code shows configuration similarities and differences between the Cisco NX-OS and Cisco IOS Software CLIs. The CLI is identical with the exception of the port type terminology. The Cisco IOS uses the portfast designation, whereas Cisco NX-OS uses the port type designation.

Verification Command Comparison

The following table lists some useful show commands for verifying and troubleshooting a STP network configuration. The show commands are almost identical for Cisco IOS and Cisco NX-OS Software.