[c-nsp] Question about VLAN Trunks
Martin Barry
marty at supine.com
Wed Jul 20 08:45:14 EDT 2011
$quoted_author = "Chris Knipe" ;
>
> interface FastEthernet8/5
> logging event link-status
> logging event spanning-tree status
> logging event bundle-status
> logging event trunk-status
> load-interval 30
> keepalive 30
> mls qos trust cos
> switchport
> switchport trunk encapsulation dot1q
> switchport trunk native vlan 105
> switchport trunk allowed vlan 104,105
> switchport mode trunk
> switchport nonegotiate
> switchport voice vlan 104
> power inline never
> storm-control broadcast level 85.00
> no cdp enable
> spanning-tree bpduguard enable
> spanning-tree link-type point-to-point
>
> When connecting a PC directly to the port and doing some tcpdumps, I
> see traffic on the trunk port that falls outside of VLAN104 and 105...
> Shouldn't the switchport allowed vlan only allow vlan 104 and 105 to
> pass via the port?
What VLAN's traffic are you seeing?
Any reason you are using a trunk port and not leaving it as:
switchport mode access
switchport access vlan 105
switchport voice vlan 104
cheers
Marty
More information about the cisco-nsp
mailing list