I have a doubt about a specific network configuration related to our VmWare infrastructure.
Briefly, we have different blade chassis, each one with a pair of Integrated Cisco Switches configured with a stackWise cable.
On the blades we have VmWare machines running VMs for different customers.
We are a Service Provider and each customer has a dedicated network protected by a firewall. Each customer has also his own VTP domain on switches.
In order to deliver VMs for different customers, we set up (on the blade switches) many trunk uplinks going to the customer's VTP switching domain.
So, the blade switches have all the VLANs for customers configured (we managed to avoid overlapping Vlans) and on each trunk we have configured VLAN filtering (switchport allowed vlan ...).
My question is: since by design each customer's network has to be isolated, is it a security issue having all the VLANs configured on single switch? I mean, there is a L3 separation but not a L2 segregation.
Is there any way to configure one single uplink on the blades and perform some type of routing?
Thanks for your help.