Should native VLAN be allowed on trunk?

net-harry · ‎10-20-2009

Hi,

We use a dedicated VLAN as the native VLAN for trunk ports on our Catalyst switches. This VLAN is not used on any access ports. Is there any advantage of allowing this VLAN over the trunk or could we only allow the VLANs used by hosts?

In other words, in the example below, is there a reason to add VLAN 82 to the "switchport trunk allowed vlan" list?

interface GigabitEthernet0/1

description Trunk to XXXXX

switchport mode trunk

switchport nonegotiate

switchport trunk native vlan 82

switchport trunk allowed vlan 16,18,20,22,24

Thanks in advance for your help!

Best regards,

Harry

Jon Marshall · ‎10-20-2009

Harry

No there isn't really any reason as no traffic should be untagged across the trunk.

Jon

Jon Marshall · ‎10-20-2009

Harry

Just as a side note to this - DTP uses the native vlan but as you have disabled DTP this shouldn't be a problem.

Jon

jbrenesj · ‎10-20-2009

Agree, but two more things to add.

UDLD causes issues if the native VLAN is not allowed and I remember something when you combine PVST+ and MST between two switches via trunks not having the native VLAN allowed. They are backwards compatible but I have seen weird issues due to this and the native VLAN not being allowed.

Since you are not in these corner cases they are good.