[c-nsp] Blocking vlan 1 on trunked ports?
Joe McGuckin
joe at via.net
Fri Jul 15 00:34:29 EDT 2005
Jared,
Thanks for the vote of confidence ^)
Two seconds after I pressed the return key I realized that the message was
missing all of the critical information.
For the record, it's a 3548XL-EN running 12.0(5)XU.
If I tell the switch to accept only vlans 402 & 404 (for example), then
perform a 'sh run', the port config shows the following:
switchport trunk allowed vlan 1,402,404,1002-1005
No amount of "sw tr all vlan 1 remove" will convince the switch to remove
these 'special' vlans.
I did verify on a new 3550 that vlans 1 & 1002-1005 are not automagically
allowed (or - at least if they are, the config hides the fact).
-joe
On 7/14/05 2:49 PM, "Jared Mauch" <jared at puck.nether.net> wrote:
> On Thu, Jul 14, 2005 at 05:41:27PM -0400, Wojtek Zlobicki wrote:
>> Why can you not remove vlan 1 ? Technical or Political Issue ? Why
>> not prune it on the trunks. At very least if customer insists on
>> sending you VLAN 1, prune it off your own trunks, that way it will
>> just be switch local
>
> I think Joe is bright enough to be indicating it is
> a technical issue, but he might want to provide some more
> info (sw, platform, cli output) on the topic :)
>
> - jared
>
>> On 7/14/05, Joe McGuckin <joe at via.net> wrote:
>>> I want to handoff a trunk port to a customer, but I cannot remove vlan1 from
>>> the list of allowed vlans.
>>>
>>> Is there a way around this?
--
Joe McGuckin
ViaNet Communications
994 San Antonio Road
Palo Alto, CA 94303
Phone: 650-213-1302
Cell: 650-207-0372
Fax: 650-969-2124
More information about the cisco-nsp
mailing list