Layer 3 Switches and EIGRP/OSPF passive interfaces

Pupil · September 2014

I've setup the topology pictured in the attachment. All of the switches are on a management VLAN 99. What is the best way to prevent the Layer 3 Switches from sending EIGRP or OSPF packets out to their connected VLANs? I tried using passive-interface vlan X, but if I do that then the two Layer 3 switches can not form an adjacency. I could create a separate VLAN for just these two switches or make the link between them a non-switchport and create their own subnet, then set all the vlan interfaces to passive.

Ryuksapple84 · September 2014

Usually you have a management only vlan and you can add devices to that vlan for the purpose of management only traffic. If you extend the vlan, you can just extend it as a L2 vlan over designated links/portchannels.

Let me know if that works for you.

Pupil · September 2014

Learned from a colleague that the trick is to use passive-interface default and then manually set no passive-interface X for which interfaces to allow EIGRP/OSPF/RIP hello packets to go out on.

RouteMyPacket · September 2014

Pupil wrote: »

Learned from a colleague that the trick is to use passive-interface default and then manually set no passive-interface X for which interfaces to allow EIGRP/OSPF/RIP hello packets to go out on.

I prefer to use this as well..this way I know for a fact which interfaces I am allow advertisements out.

Layer 3 Switches and EIGRP/OSPF passive interfaces

Comments