How to protect a network (that's already running spt) from a customer's layer2 loop?

• Previous message (by thread): Possible Level3 Fibre Cut
• Next message (by thread): broadband routers security issues
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello colleagues,

I'm using (rapid)spanning tree in order to protect my network from layer2
loops and in order to provide redundancy in my ring-structure.

This is fine so far but a big PROBLEM can occur if a customer is having a
layer2-loop within his part of the network.
Although the customer does only have one single uplink to my backbone and is
in his own vlan isolated from the other vlans on the network/ring the cpu on
my switches dramatically increases to 99% when the customer is having a
layer2-loop on his switch (and does not run spanning tree).
The same thing happens if spanning tree gets disabled on one of my switches.

What can I do against this situation? I know that many big network outages
can be traced back to layer2-problems but I had thought that spanning tree
would help in such a situation.

How can I protect my network from such kind of a situation?
Broadcast-storm-limits, mac-limits and so on won't help here, right. What's
next?!?

Thanks,
Gunther

• Previous message (by thread): Possible Level3 Fibre Cut
• Next message (by thread): broadband routers security issues
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]