ankbhasi Mon, 10/08/2007 - 09:31
User Badges:
  • Cisco Employee,

Hi Rob,


There is no much negative impact as far as I can think of other than more and more VTP servers you have you are giving more and more swithes capability of creating,deleting and modifying vlan database which is not very desired in big networks.


It is better to have minimum 2 VTP servers in your network to work as backup incase one VTP server is down but there is no much negative impact if you have another switch also working as VTP server so to have total 3 VTP servers.


HTH


Ankur


*Pls rate all helpfull post

Francois Tallet Mon, 10/08/2007 - 09:55
User Badges:
  • Gold, 750 points or more

That's right, but the difference between client and server is a joke as far as security is concerned. A user that has access to the enable mode can change the bridge from client to server and configure the domain anyway. Only VTP3 introduces some additional configuration restrictions (and it's still not very elaborate).

The additional risk of having lots of VTP servers in the network might be that you increase the probability of inserting a server with a wrong configuration and a higher revision (this could happen when a spare is inserted). This weakness of VTP results in the wrong configuration to be propagated to the whole domain, causing outages. Else, from the VTP operation point of view, there is not much difference between clients and servers, except that servers *have* to save the configuration into nvram.

Regards,

Francois

Actions

This Discussion