Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

tagging native vlan on c2960

Hi all

is it possible to tag the native vlan on my trunks on a c2960, and is this best practice or not ?

4 REPLIES
New Member

Re: tagging native vlan on c2960

You may want to have a look at:

http://www.networkworld.com/community/node/38732

New Member

Re: tagging native vlan on c2960

it looks like this is not possible on the c2960

New Member

Re: tagging native vlan on c2960

If you are looking for the "switchport trunk native vlan tag" command, I don't think it is supported on Cat2960.

But to add a little more security to my trunks, I use "switchport trunk native vlan xxx" (on both sides) which changes the native VLAN on the trunk from 1 to xxx.

And, clearly, I don't use VLAN xxx anywhere else.

Cisco Employee

Re: tagging native vlan on c2960

Hello,

The "vlan dot1q tag native" command et al. are, to my knowledge, supported only on 3560 and probably higher switches. The 2960 will not be able to tag the native VLAN.

The workaround is quite simple: avoid using the native VLAN as an access VLAN and you are safe. Because the native VLAN is by default set to 1, either change the native VLAN on all trunks to a different and guaranteedly unused VLAN, or avoid using the VLAN1 on your access ports completely. Personally, I prefer the second approach - leaving the native VLAN as 1 but avoiding it completely. The VLAN1 is important for switches as it conveys various service protocols like CDP, VTP or STP. It is best to leave the VLAN1 for switches alone and use other VLANs for access ports.

Best regards,

Peter

569
Views
0
Helpful
4
Replies