RE: show dtp [bcc][faked-from][bayes]

From: ccie2be (ccie2be@nyc.rr.com)
Date: Wed Mar 02 2005 - 18:43:19 GMT-3

Thanks again Marvin,

Getting back to the original question, is there a way to disable dtp
globally?

As far as I know, dtp can only be disabled on a per interface basis by using
the command switchport nonegotiate.

I also know that's it's possible to use the interface range command but I
wouldn't consider that "global" - I would think of that as a per interface
command executed multiple times.

In addition, there's are also some built-in macro's that set all ports to
access mode and do some other things, but they work (I believe) by
automatically configuring different commands on each interface.

So, this leads to another question of interpretation:

If the lab asks you to do something "globally", for example, "disable dtp"

and there are commands that would do that but you don't know of them so
instead you disable dtp on every interface, would you get credit for that or
lose points?

Personally, I interpret "global" as requiring something at the sw1(config)#
prompt rather than the sw1(config-if)# prompt.

What do you think?

TIA,Tim

-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
marvin greenlee
Sent: Wednesday, March 02, 2005 2:50 PM
To: 'ccie2be'; ccielab@groupstudy.com
Subject: RE: show dtp [bcc][faked-from][bayes]

I think that line states that the trunking encapsulation is negotiated.

***

Switch#show dtp int fa0/19
DTP information for FastEthernet0/19:
  TOS/TAS/TNS: TRUNK/DESIRABLE/TRUNK
  TOT/TAT/TNT: 802.1Q/NEGOTIATE/802.1Q
  Neighbor address 1: 000AB7353D93
  Neighbor address 2: 000000000000
  Hello timer expiration (sec/state): 22/RUNNING
  Access timer expiration (sec/state): 287/RUNNING
  Negotiation timer expiration (sec/state): never/STOPPED
  Multidrop timer expiration (sec/state): never/STOPPED
  FSM state: S6:TRUNK
  # times multi & trunk 0
  Enabled: yes
  In STP: no

  Statistics
  ----------
  14271 packets received (14271 good)
  0 packets dropped
      0 nonegotiate, 0 bad version, 0 domain mismatches,
      0 bad TLVs, 0 bad TAS, 0 bad TAT, 0 bad TOT, 0 other
  16660 packets output (16660 good)
      16660 native, 0 software encap isl, 0 isl hardware native
  0 output errors
  0 trunk timeouts
  3 link ups, last link up on Wed Apr 14 1993, 05:03:15
  2 link downs, last link down on Wed Apr 14 1993, 05:03:11

Switch#show run int fa0/19
Building configuration...

Current configuration : 130 bytes
!
interface FastEthernet0/19
 switchport access vlan 20
 switchport trunk native vlan 122
 switchport mode dynamic desirable
end

Switch#show int trunk

Port Mode Encapsulation Status Native vlan
Fa0/19 desirable n-802.1q trunking 122

Port Vlans allowed on trunk
Fa0/19 1-4094

Port Vlans allowed and active in management domain
Fa0/19 1,20

Port Vlans in spanning tree forwarding state and not pruned
Fa0/19 1,20
Switch#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Switch(config)#int fa0/19
Switch(config-if)#swit trunk encap dot1q

Switch(config-if)#do show dtp int fa0/19
DTP information for FastEthernet0/19:
  TOS/TAS/TNS: TRUNK/DESIRABLE/TRUNK
  TOT/TAT/TNT: 802.1Q/802.1Q/802.1Q
  Neighbor address 1: 000AB7353D93
  Neighbor address 2: 000000000000
  Hello timer expiration (sec/state): 25/RUNNING
  Access timer expiration (sec/state): 292/RUNNING
  Negotiation timer expiration (sec/state): never/STOPPED
  Multidrop timer expiration (sec/state): never/STOPPED
  FSM state: S6:TRUNK
  # times multi & trunk 0
  Enabled: yes
  In STP: no

  Statistics
  ----------
  14271 packets received (14271 good)
  0 packets dropped
      0 nonegotiate, 0 bad version, 0 domain mismatches,
      0 bad TLVs, 0 bad TAS, 0 bad TAT, 0 bad TOT, 0 other
  16664 packets output (16664 good)
      16664 native, 0 software encap isl, 0 isl hardware native
  0 output errors
  0 trunk timeouts
  3 link ups, last link up on Wed Apr 14 1993, 05:03:15
  2 link downs, last link down on Wed Apr 14 1993, 05:03:11

Switch(config-if)#

Marvin Greenlee, CCIE#12237, CCSI# 30483
Network Learning Inc
marvin@ccbootcamp.com
www.ccbootcamp.com (Cisco Training)

-----Original Message-----
From: ccie2be [mailto:ccie2be@nyc.rr.com]
Sent: Wednesday, March 02, 2005 10:53 AM
To: marvin greenlee; Cisco certification
Subject: RE: show dtp [bcc][faked-from][bayes]

Thanks Marvin,

It's too bad the CR doesn't give any explanations for the output of the
command. It might be useful to know what some of that stuff below means.

Switch# show dtp interface gigabitethernet0/1
DTP information for GigabitEthernet0/1:
  TOS/TAS/TNS: ACCESS/AUTO/ACCESS
  TOT/TAT/TNT: NATIVE/NEGOTIATE/NATIVE
  Neighbor address 1: 000943A7D081
  Neighbor address 2: 000000000000
  Hello timer expiration (sec/state): 1/RUNNING
  Access timer expiration (sec/state): never/STOPPED
  Negotiation timer expiration (sec/state): never/STOPPED
  Multidrop timer expiration (sec/state): never/STOPPED
  FSM state: S2:ACCESS
  # times multi & trunk 0
  Enabled: yes
  In STP: no

  Statistics
  ----------
  3160 packets received (3160 good)
  0 packets dropped
      0 nonegotiate, 0 bad version, 0 domain mismatches, 0 bad TLVs, 0 other
  6320 packets output (6320 good)
      3160 native, 3160 software encap isl, 0 isl hardware native
  0 output errors
  0 trunk timeouts
  1 link ups, last link up on Mon Mar 01 1993, 01:02:29
  0 link downs

I assume this line means DTP is enabled on this interface:

TOT/TAT/TNT: NATIVE/NEGOTIATE/NATIVE

Would you agree?

Even so, I have no clue what TOT/TAT/TNT means except that TNT is a type of
explosive used in car bombings and sometimes in construction. <shrug>

Tim

-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
marvin greenlee
Sent: Wednesday, March 02, 2005 12:37 PM
To: 'ccie2be'; Cisco certification
Subject: RE: show dtp [bcc][faked-from][bayes]

There is a basic explanation in the 2970 command reference.

Cisco - 2970 Command Reference - show dtp -
http://www.cisco.com/en/US/products/hw/switches/ps5206/products_command_refe
rence_chapter09186a00801ce237.html#3135676

Marvin Greenlee, CCIE#12237, CCSI# 30483
Network Learning Inc
marvin@ccbootcamp.com
www.ccbootcamp.com (Cisco Training)

-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
ccie2be
Sent: Wednesday, March 02, 2005 9:26 AM
To: Roy Dempsey; Cisco certification
Subject: RE: show dtp [bcc][faked-from][bayes]
Importance: Low

Hi Roy,

Until your post, I had never heard of the show dtp command and there were a

few times this command would have been very useful to know about.

I looked it up in the 3550 Command Reference and it's not there.

But, a quick check on a 3550 proves that this command does, indeed, exist.

Did you just happen upon this command by doing a show ? or did you learn

about this command another way?

I also see that an interface can be specified with this command but I

couldn't make much sense of much of the output. If this command is

documented somewhere, could you post a link?

TIA, Tim

-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of Roy
Dempsey
Sent: Wednesday, March 02, 2005 10:44 AM
To: Cisco certification
Subject: disable dtp globally?

Hi,

I'm trying to disable DTP from running on my switches completely. I
have run switchport nonegotiate, but still get this under show dtp:

Global DTP information
        Sending DTP Hello packets every 30 seconds
        Dynamic Trunk timeout is 300 seconds
        24 interfaces using DTP

Looks like its still enabled globally. I've even run switchport host,
same difference...
However, on the other side of my trunk links I don't see any DTP
packets, so it looks like its not running, at least on that link.
Debug DTP doesn't produce any hello packets every 30 seconds. Looks
like the message above it plain wrong?

Thanks again
Roy

This archive was generated by hypermail 2.1.4 : Sun Apr 03 2005 - 17:56:39 GMT-3