Brocade Network OS NETCONF Operations Guide v4.1.1 User Manual

Page 393

Advertising
background image

Network OS NETCONF Operations Guide

361

53-1003231-02

Configuring all xSTP on DCB interface ports

24

Guard root protects the root bridge from malicious attacks and unintentional misconfigurations in
which a bridge device that is not intended to be the root bridge becomes the root bridge. Such
attacks can cause severe bottlenecks in the data path. Guard root ensures that the port on which it
is enabled is a designated port. If the guard root-enabled port receives a superior BPDU, it goes to
a discarding state.

To enable the guard root on a DCB interface, perform the following steps.

1. Issue the <edit-config> RPC to configure the interface node in the

urn:brocade.com:mgmt:brocade-interface namespace.

2. Under the <interface> node, include the <gigabitethernet>, <tengigabitethernet>,

<fortygigabitethernet>, <hundredgigabitethernet>, or <port-channel> node element.

3. Under the <gigabitethernet>, <tengigabitethernet>, <fortygigabitethernet>,

<hundredgigabitethernet>, or <port-channel> node element, include the following elements.

a. In the <name> element, specify the interface name in [rbridge-id/]slot/port format or

port-channel number.

b. In the <shutdown> element, include the delete operation in the element tag to enable the

port.

c. Include the <spanning-tree> node element, which resides in the

urn:brocade.com:mgmt:brocade-xstp namespace.

4. Under the <spanning-tree> node element, include the <guard> node element.

5. Under the <guard> node, include the empty <root> element to enable the guard root on the

DCB interface.

<?xml version="1.0" encoding="UTF-8"?>

<rpc message-id="2031" xmlns="urn:ietf:params:xml:ns:netconf:base:1.0">

<edit-config>

<target>

<running/>

</target>

<config>

<interface xmlns="urn:brocade.com:mgmt:brocade-interface">

<tengigabitethernet>

<name>22/0/1</name>

<shutdown xmlns="urn:ietf:params:xml:ns:netconf:base:1.0"

operation="delete"/>

<spanning-tree xmlns="urn:brocade.com:mgmt:brocade-xstp">

<guard>

<root/>

</guard>

</spanning-tree>

</tengigabitethernet>

</interface>

</config>

</edit-config>

</rpc>

<rpc-reply message-id="2031" xmlns="urn:ietf:params:xml:ns:netconf:base:1.0">

<ok/>

</rpc-reply>

Advertising
See also other documents in the category Brocade Computer Accessories: