For point 1 I'd say that RootGuard will kick in when Lower BPDU is received on a port, because Lower BPDU means there's a bridge/switch somewhere that can become a new root.
Eugene From: [email protected] [mailto:[email protected]] On Behalf Of Mike Rojas Sent: Tuesday, July 10, 2012 6:47 PM To: [email protected] Subject: [OSL | CCIE_Security] RootGuard, BPDUGuard, LoopGuard, Hello, I have a question and this is basically what I understand about these 3 features: 1-RootGuard--Enabled on the designated ports in case we received a Higher BPDU on that port, we are going to put it on an inconsistent state. 2-LoopGuard-Blocked ports stop receiving BPDU's it thinks that it is fine, passes to forwarding, produces a loop. 3-BPDU Guard, Received on an Access port, the port is put on inconsistent. Am I missing something? Any better way to understand and to apply security on it? Mike
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com Are you a CCNP or CCIE and looking for a job? Check out www.PlatinumPlacement.com
