Ganesh is right on the configuration on allowing certain vlans to go on a trunk.. but as a best practice you can do the following to avoid unncessary broadcasts of vlan information across layer 2 trunks:
1) have your switches with vtp mode transparent configured.. doing this, you can make sure you only have vlans necessary on the edge switch to be defined on the trunk.. this can also avoid configuration register issues you can face with server/client mode.. but it depends on what your network size is, and how efficiently you can manage your vlan configurations..
2) dont have your vlan 1 as native vlans on your trunks.. if possible shutdown vlan 1 on all switches, and have a seperate management vlan.. CDP, VTP, PaGP packets are forwarded by default over VLAN 1.. you can have vlan hopping attacks etc due to this..
there are many more standard practices given in this doc which can help you..
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...
I am going to design and build an LAN network under a tunnel underground with long distance between the switches.
I will have 2 Catalyst switches and 8 Industrial IE3000, and they will be connected with fiber.
For now I am planning on use Layer-2 s...