Wan Optimization Support

Technical => Troubleshooting => : venkatesh.akula October 23, 2014, 11:43:03 AM

: STP forwarding problem
: venkatesh.akula October 23, 2014, 11:43:03 AM

Hey,

i got a problem using wanos. As in our small Diagramm, we get an STP problem on the Switch.
The "red" Port is getting blocked by the Switch and if we disable the STP on port3, the packets are getting forwarded. So the "core-server" is kinda transparent for the switch.

Is there any Solution ?


Thanks in advance.


(http://wanos.co/forum/index.php?action=dlattach;topic=115.0;attach=104;image)
Admin edit: image

: Re: STP forwarding problem
: ahenning October 23, 2014, 01:46:32 PM

Hi, yes, that is a standard deployment. It is also possible to have a second link between vlan 1 and vlan 200 as a backup path.

Here is a live config:

interface FastEthernet0/2
 switchport access vlan 100
 switchport mode access
 spanning-tree portfast
end
interface FastEthernet0/5
 switchport access vlan 200
 switchport mode access
 spanning-tree portfast

The switch should be running Per-Vlan STP for this to work, else it thinks there is a loop.
'spanning-tree bpdufilter enable' or equivalent might also help in some cases where its not possible e.g. where both inside and outside vlan is on the same trunk port

interface FastEthernet0/5
 description Single-NIC-ESXi
 switchport trunk encapsulation dot1q
 switchport trunk allowed vlan 30,101
 switchport mode trunk
 spanning-tree portfast trunk
 spanning-tree bpdufilter enable

: Re: STP forwarding problem
: venkatesh.akula October 24, 2014, 12:57:43 PM

Is it necessary to use 2 links to connect the wanos-server from LAN or will it also work with 1 link ?

: Re: STP forwarding problem
: ahenning October 24, 2014, 01:27:36 PM

It will work with one. The two links are only needed when you want STP to automatically switch to the backup path. This is basically the same as a bypass NIC.

The second link is not required to make the setup work. If you want to bypass wanos for some reason, e.g. network changes, then simply change the Router LAN port to Vlan-1 where the users/servers are. When the change is done and want to bring the appliance inline again, then switch the Router Lan port, back to Vlan-200.