cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
457
Views
0
Helpful
3
Replies

VLANs Without 802.1Q Tagging

chrislisser
Level 1
Level 1

We're working with an IDS vendor that cannot analyze 802.1Q tagged packets. Currently we have a Catalyst 37xx Stack with several VLAN's using 802.1Q tagging to trunk to a 2821 with several Ethernet subinterfaces.

Can we remove 802.1Q tagging and still trunk to the subinterfaces?

1 Accepted Solution

Accepted Solutions
3 Replies 3

I am afraid that's not possible. Without the vlan tag the router wouldn't be able to differentiate which VLAN the traffic belongs to. I don't know if making the switch handle all layer 3 traffic forwarding and making the port connected to 2811 an access port would meet your IDS requirement. As you are probably aware all traffic sent out on the access port wouldn't be tagged.

HTH

Sundar

So my best bet here if we want to eliminate 802.1Q is to put the router on it's own VLAN and then have the switch handle all VLAN routing?

That's correct.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: