[c-nsp] Management Vlan VS Vlan1
Murphy, William
William.Murphy at uth.tmc.edu
Wed Aug 19 11:56:23 EDT 2009
In all recent IOS versions and switching hardware you can disable VLAN 1 on
trunk ports (switchport trunk allowed vlan remove 1) and the protocols you
mentioned will still continue to function. This is how Cisco recommends you
do it.
-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net
[mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of shadow floating
Sent: Tuesday, August 18, 2009 11:49 PM
To: cisco-nsp at puck.nether.net
Subject: [c-nsp] Management Vlan VS Vlan1
Hi All,
I just have a question, as we know that Cisco preserve VLAN 1 for
management issues and network management needed protocols like CDP,
VTP and the like, and all access from other VLANs to this VLAN should
be restricted except from the management VLAN, as for our network, we
are implementing a new management VLAN on a VLAN id other than 1
according to some consultant's advice, my question is : is there any
benefit of migrating the management (all managing and managed devices)
to another VLAN other than VLAN1 ??...won't in this case we have to
protect two VLANs (VLAN 1 and the new management VLAN)?...or is there
a real benefit in the migration of the management VLAN, as for my
knowledge...VLAN 1 can not be disabled or even pruned on trunk links?
appreciating your comments
thanks alot
Nad
_______________________________________________
cisco-nsp mailing list cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 4327 bytes
Desc: not available
URL: <https://puck.nether.net/pipermail/cisco-nsp/attachments/20090819/8b2b013b/attachment.bin>
More information about the cisco-nsp
mailing list