Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Prune function for VLAN 1 in a 802.1Q trunk

Is that possible to prune VLAN 1 in a 802.1Q trunk?

How I can do that? What are the benefits? What are the problems?

1 ACCEPTED SOLUTION

Accepted Solutions

Re: Prune function for VLAN 1 in a 802.1Q trunk

Yes,you can disable VLAN1 on 802.1q trunk.

The benefit is security - VLAN1 is the deafut one, also used as native VLAN and management VLAN by default.

But it disables only user data and STP.

CDP, DTP, VTP and other Cisco control protocols are still running in VLAN1.

You also need to configure other VLAN as native one.

You can get in troubles with STP - VLAN1 STP is used for interconnection with other vendors devices (Common Spanning Tree).

There are sometimes bugs noticed related to VLAN1 disabling - I remember VTP not working on Cat3550 when VLAN1 disabled in the past.

Regards,

Milan

1 REPLY

Re: Prune function for VLAN 1 in a 802.1Q trunk

Yes,you can disable VLAN1 on 802.1q trunk.

The benefit is security - VLAN1 is the deafut one, also used as native VLAN and management VLAN by default.

But it disables only user data and STP.

CDP, DTP, VTP and other Cisco control protocols are still running in VLAN1.

You also need to configure other VLAN as native one.

You can get in troubles with STP - VLAN1 STP is used for interconnection with other vendors devices (Common Spanning Tree).

There are sometimes bugs noticed related to VLAN1 disabling - I remember VTP not working on Cat3550 when VLAN1 disabled in the past.

Regards,

Milan

314
Views
0
Helpful
1
Replies
CreatePlease login to create content