When a BPDU comes into the port, which means that a device that is not an end device is detected on that port, the BPDU guard feature error disables the port Following is an example of what an error-disabled port looks like: 2960G# show interface gigabit0/7GigabitEthernet0/7 is down, line protocol is down (err-disabled) Hardware is Gigabit Ethernet, address is 001b.54aa.c107 (bia 001b.54aa.c107) This example was chosen because creation of an error-disable situation is easy in this case: cat6knative(config-if)#spanning-tree bpduguard enable

As this section explains, this problem can occur when one device (the switch, in this case) has EtherChannel turned on manually with use of the on mode (as opposed to desirable) Some errors can occur quite often (an example is the error detected by the Bridge Protocol Data Unit (BPDU) portguard, which can occur every two seconds). Sign in to add this video to a playlist. In this example, a Catalyst 6509 switch is connected to another switch (a 6509).

I have another old Catalyst 2960TCL which is ok no ping loss from gateway, If i connect my new Catalyst 2960 with old Catalyst 2960TCL, then no packet loss also getting There are various reasons for the interface to go into errdisable. The port is put into the errdisabled state if it flaps more than four-five times in few seconds. The port status is "errdisable" due to a UniDirectional Link Detection condition6.

This document uses the terms errdisable and error disable interchangeably. The actual message depends on the reason for the error condition. One of the most common causes of error disabling I've seen isn't technically an error, but a violation of a port security policy. The other disablement is because of an EtherChannel configuration problem.

Close Yeah, keep it Undo Close This video is unavailable. He is known for his blog and cheat sheets here at Packet Life. A device can loop the packets back to the source interface, which usually occurs because there is a logical loop in the network that the spanning tree has not blocked. Connecting hubs, concentrators, switches, bridges, etc.

cat6knative#show errdisable recovery ErrDisable Reason Timer Status ----------------- -------------- udld Disabled bpduguard Disabled security-violatio Disabled channel-misconfig Disabled pagp-flap Disabled dtp-flap Disabled link-flap Disabled l2ptguard Disabled psecure-violation Disabled gbic-invalid Disabled dhcp-rate-limit Disabled Incorrect SFP cable Ports go into errdisable state with the %PHY-4-SFP_NOT_SUPPORTED error message when you connect Catalyst 3560 and Catalyst 3750 Switches using an SFP Interconnect Cable. Later versions of Cisco Discovery Protocol (CDP) can warn you about a duplex mismatch before the port is put in the error-disabled state. UTC Hey so if a port has portfast enabled along with bpdugaurd .

The good thing is that the ports go into errdisable mode as soon as UDLD is detected but the bad thing is that I have to manually bring the port up. Cisco 4507R+E Layer 3 Installation: Redundant WS-X45-SU... About the Author Jeremy Stretch is a network engineer living in the Raleigh-Durham, North Carolina area. show errdisable detect—Shows the reason for the errdisable status.

Determine the Reason for the Errdisabled State (Console Messages, Syslog, and the show errdisable recovery Command) When the switch puts a port in the error-disabled state, the switch sends a message Only personal (e.g. Loading... Troubleshoot show interfaces status err-disabled—Shows which local ports are involved in the errdisabled state.

danscourses 44,511 views 9:09 Switch Configuration - Port Security - Duration: 21:52. This is the behaviour of the default port security policy when enabling Port Security. The show errdisable detect command displays the error-disable detection status. NOTE When automatic recovery re-enables the port, the port is not in the error-disabled state, but it can remain down for other reasons, such as the Tx/Rx of the fibre optic

If you leave the other switch in this state for a minute or so, Spanning Tree Protocol (STP) on the switch where the EtherChannel is turned on thinks that there is In order to turn on errdisable recovery and choose the errdisable conditions, issue this command: cat6knative#errdisable recovery cause ? These customers want to know why the error disablement happened and how they can restore the ports to normal. Interfaces that will be enabled at the next timeout: Interface Errdisable reason Time left(sec) --------- ----------------- -------------- Fa0/1 psecure-violation 237 And two hundred and thirty-seven seconds later... %PM-4-ERR_RECOVER: Attempting to recover

Port security violation You can use port security with dynamically learned and static MAC addresses in order to restrict the ingress traffic of a port. This document specifically focuses on errdisable for switches that run Cisco IOS Software. We can configure the switch to automatically re-enable any error-disabled interfaces after a specified timeout period. ErrDisable Reason Flaps Time (sec) ----------------- ------ ---------- pagp-flap 3 30 dtp-flap 3 30 link-flap 5 10 Loopback error A loopback error occurs when the keepalive packet is looped back to

danscourses 59,818 views 5:39 Configure Switch Port Security MAC Address Sticky - Part 2 - Duration: 9:09. thanks for sharing. The reasons a catalyst switch can go into Errdisable mode and shutdown a port are many and include: Duplex Mismatch Loopback Error Link Flapping (up/down) Port Security Violation Unicast Flodding UDLD The core switches ignore the inner tags and forward the packet to all trunk ports in the same metro VLAN.

Search My Blog . . . cat6knative#show interfaces gigabitethernet 4/1 status Port Name Status Vlan Duplex Speed Type Gi4/1 err-disabled 100 full 1000 1000BaseSX In order to determine what the problem was, look at the error message. I can't see a way from the configure>errdisable options. UTC There are a number of events which can disable a link on a Catalyst switch, such as the detection of a loopback, UDLD failure, or a broadcast storm.

For more information on troubleshooting switchport issues, refer to Troubleshooting Switch Port and Interface Problems. Loading... Configuring SPAN On Cisco Catalyst Switches - Monitor &... Of all the errors, Port Security is more a feature rather than an error.

Ensure that only one host is connected to the port. This command is used to configure the recovery mechanism from a Layer 2 maximum rate error so that the interface can be brought out of the disabled state and allowed to Aditya Gaur 5,068 views 22:53 Multicast Part 1 - Intro - Duration: 6:54.