Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
472
Views
5
Helpful
3
Replies

Another Question regarding Switchport trunk, mode, and Trunk.

Go to solution
rwamstutz
Level 1
Level 1

‎05-09-2007 12:16 PM - edited ‎03-05-2019 03:58 PM

All, here is a config I inherited. It is an end user port: Because its an end user port, isnt the commands switchport trunk, bad for the config? See below for the config:

interface FastEthernet1/0/7

switchport access vlan 202

switchport trunk encapsulation dot1q

switchport trunk native vlan 205

switchport mode dynamic desirable

switchport voice vlan 246

srr-queue bandwidth share 10 10 60 20

srr-queue bandwidth shape 10 0 0 0

mls qos trust device cisco-phone

mls qos trust cos

auto qos voip cisco-phone

spanning-tree portfast

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
jahilnt10
Level 1
Level 1

‎05-09-2007 12:22 PM

hmmm very bad. You don't need spanning-tree portfast on the port the one you are using as trunk port.

As you said that this port is connected to user device not trunked switch. You can remove all of this....

no switchport trunk encapsulation dot1q

no switchport trunk native vlan 205

no switchport mode dynamic desirable

you may add:

switchport mode access

Cheers,

Masood Ahmad Shah

BLOG: http://www.weblogs.com.pk/jahil/

View solution in original post

0 Helpful
3 Replies 3

Go to solution
jahilnt10
Level 1
Level 1

‎05-09-2007 12:22 PM

hmmm very bad. You don't need spanning-tree portfast on the port the one you are using as trunk port.

As you said that this port is connected to user device not trunked switch. You can remove all of this....

no switchport trunk encapsulation dot1q

no switchport trunk native vlan 205

no switchport mode dynamic desirable

you may add:

switchport mode access

Cheers,

Masood Ahmad Shah

BLOG: http://www.weblogs.com.pk/jahil/

0 Helpful

Go to solution
mohammedmahmoud
Level 11
Level 11

‎05-09-2007 12:35 PM

Hi,

If it is an end user port, you don't need any trunk configuration, and by the way the command "switchport mode dynamic desirable" explains why the interface accepted the trunk configuration, this command means "desirable" that the interface will try to be trunk, and if it fails to be a trunk it will act as an access switchport.

HTH, please do rate if it does helps,

Mohammed Mahmoud.

0 Helpful

Go to solution
chris.lepa
Level 1
Level 1
In response to mohammedmahmoud

‎05-09-2007 02:39 PM

I agree, you should take any trunking commands off of the access port. It is a pretty big security hole too. A user with malicious intent could set up a trunking session with the port and view traffic on all VLANs if they pleased.

-Chris

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card