[nsp] Who's in my VTP domain

Temkin, David temkin at sig.com
Wed Aug 27 23:51:50 EDT 2003


You could set a VTP password to block rogue switches from affecting your VTP
domain...

You could also do "set vtp mode off" on a CatOS switch, or go for vtp
transparent to not allow VTP to affect the local switch.

You could also use bogus random character vtp domain names on every switch.



-----Original Message-----
From: Pete Kruckenberg [mailto:pete at kruckenberg.com] 
Sent: Wednesday, August 27, 2003 8:04 PM
To: cisco-nsp at puck.nether.net
Subject: [nsp] Who's in my VTP domain


Another unrelated question on the VTP topic.

I had a rather nasty outage today when I discovered that 
some switches are in my VTP domain, acting as servers, that 
I was not aware of.

Is there any way to determine what VTP servers and VTP 
clients are in a given domain?

Short of blocking VLAN 1 on a trunk, is there any other way (such as
disabling VTP on the trunk) to block VTP traffic--can I run VLAN 1 between
two switches, but restrict VTP traffic from traversing the trunk?

Thanks again.

Pete.


_______________________________________________
cisco-nsp mailing list  cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/


More information about the cisco-nsp mailing list