mihanlin Wed, 11/26/2008 - 21:10

A vlan which is used purely for management of network devices.

Therefore, no customer traffic should be on the management vlan, just management traffic.


johnlloyd_13 Wed, 11/26/2008 - 23:38

it's vlan 1 or the default vlan on a switch where ports are all initially assigned

Joseph W. Doherty Thu, 11/27/2008 - 04:22

As Michael notes, this VLAN exludes customer traffic, or in other words, no "normal" user traffic, would be on this VLAN, only network system traffic.

Examples include: the device's management address, CDP, SNMP, RMON, STP BPDUs (if not per VLAN), etc.

The purpose is for both security and performance. Security might be obvious, as a different VLAN, we limit what traffic can access the network device as a host. For performance, just as with VLANs in general, we limit what broadcasts the network device will see and minimize traffic directed to the device's management port (e.g. multicast w/o snooping).


This Discussion