How do remove Vlan1 in exsisting production network?

Answered Question
Feb 20th, 2010
User Badges:

Hi,


In our production network,Vlan 1 is up on some of the switches.How to remove vlan1 without impact in production?

Correct Answer by Jon Marshall about 7 years 4 months ago

kandanarumugam wrote:


Hi,


In our production network,Vlan 1 is up on some of the switches.How to remove vlan1 without impact in production?


You can't actually stop vlan 1 sending CDP/PaGP/VTP etc. across trunk links but what you can do is -


1) create a vlan eg. vlan 999 to put all ports that are unused into. There is no need to create a L3 SVI for vlan 999 because it is only for unused ports


2) change the native vlan from vlan 1 to another vlan. Again this vlan does not need a L3 SVI because the native vlan does not need to be routed


3) If you are using vlan 1 to manage your switches you need to create a new vlan for that and shutdown vlan 1 interface on each switch and add a L3 SVI for the new vlan. You will need to be at the console for this otherwise you could lose connectivity


If you have any user ports in vlan 1 then you will need to reallocate these into different vlans.


Once you have done all that vlan 1 will only be used for Cisco L2 managements protocols - CDP/PaGP/VTP etc.


Jon

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
Jon Marshall Sat, 02/20/2010 - 10:44
User Badges:
  • Super Blue, 32500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

kandanarumugam wrote:


Hi,


In our production network,Vlan 1 is up on some of the switches.How to remove vlan1 without impact in production?


You can't actually stop vlan 1 sending CDP/PaGP/VTP etc. across trunk links but what you can do is -


1) create a vlan eg. vlan 999 to put all ports that are unused into. There is no need to create a L3 SVI for vlan 999 because it is only for unused ports


2) change the native vlan from vlan 1 to another vlan. Again this vlan does not need a L3 SVI because the native vlan does not need to be routed


3) If you are using vlan 1 to manage your switches you need to create a new vlan for that and shutdown vlan 1 interface on each switch and add a L3 SVI for the new vlan. You will need to be at the console for this otherwise you could lose connectivity


If you have any user ports in vlan 1 then you will need to reallocate these into different vlans.


Once you have done all that vlan 1 will only be used for Cisco L2 managements protocols - CDP/PaGP/VTP etc.


Jon

kandanarumugam Sun, 02/21/2010 - 22:37
User Badges:

Hi Jon,


I agree your points,But my switches are placed in remote location.I don't have option to connect through console and many of the production servers connected to that switch.Is it possible to remove the vlan1 without down time?


Thanks,

Kandan

Actions

This Discussion