02-11-2016 09:36 PM
02-11-2016 09:51 PM
Better you should allow VLAN which are present and traverse over network ,so that other VLAN will be blocked and It's the best practice to secure your network.
So you have to configure cisco's Gi 0/18 ,0/19 ports to allow vlan 12,20,30 traffic.
Rate this post
02-11-2016 10:12 PM
By default, a trunk port on a Cisco switch will pass all vlans.
To successfully pass traffic from end to end, the intermediate switch must know that each vlan exists.
02-12-2016 02:33 AM
Hello Earl.
Echoing Johnnylingo: By default, a trunk passes all traffic from all VLANs, also, you must check which VLANs are you going to filter in the trunks :)
02-12-2016 03:17 AM
hi Earl,
Only Vlans there are in the "show vlan brief" can traverse the trunk link, even though in "show interfaces trunk" you can see all the Vlans are enabled in the trunk port by default.
Then at first step you need to create your desired vlans locally or by VTP protocol in switch.
BR,
Majid
02-14-2016 06:54 PM
TO put it simply, with default configuration and no filtering involved, trunks passes ALL CONFIGURED VLANs on its port
To stress out, the switch must have a configured VLAN for it to recognized and be able to passthrough, see scenario below:
DIAGRAM:
[SW1]----[SW2]---[SW3]
SCENARIO:
SW1: VLAN10,20
SW2: VLAN10
SW3: VLAN10,20
-Based on the vlan configuration above, even though SW3 has VLAN20, he wont be able to receive VLAN20 traffic since the middle switch(SW2) does not have VLAN20.
In order for SW3 to get VLAN20 traffic, SW2 should have VLAN20
Rate or Mark as Answer Helpful Post :)
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: