Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1459
Views
0
Helpful
3
Replies

How to create a fake VLAN

rwamstutz
Level 1
Level 1

‎07-10-2007 08:36 AM - edited ‎03-05-2019 05:13 PM

All, can you tell me how to create a fake VLAN, that if a end device was plugged into the switch, it wouldnt go anywhere?

Labels:
0 Helpful
3 Replies 3

royalblues
Level 10
Level 10

‎07-10-2007 08:55 AM

Create a VLAN but do not create any corresponding SVI for that VLAN.

THis way the VLANS will not have any gateway and will not work

Narayan

0 Helpful

jphilope
Level 3
Level 3

‎07-10-2007 09:00 AM

If you are worried about someone plugging into an unused port on a switch and gaining access to your network, would it not be better, safer and more manageable to shut the interface? However, physical access is access. They can unplug any in use port and access the network. To do it differently, you would need a NAC.

0 Helpful

Amit Singh
Cisco Employee
Cisco Employee

‎07-10-2007 09:14 AM

I agree with Narayan on this to create a vlan and donot create a corresponding SVI. Also, make sure that you donot assign any ports to Vlan1, which is default vlan and all the ports belong to it.

Please use the link for Vlan security and more info on this:

http://www.cisco.com/en/US/products/hw/switches/ps708/products_white_paper09186a008013159f.shtml

HTH,Please rate it it does.

-amit singh

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card