Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

trunk question, pruning?

Hi, I have a question regarding trunk links. If I want to allowe traffic from only few vlans between 2 devices should I have to configure both ends with the same config.

Example:

Distribuited layer Switch

interface GigabitEthernet2/8

description es-plcsedeP1C

no ip address

switchport

switchport trunk encapsulation dot1q

switchport trunk native vlan 45

switchport trunk allowed vlan 45,56

switchport trunk pruning vlan 2-44,46-55,57-1001,1006-4094

Acces Layer Switch

interface GigabitEthernet0/1

description es-plcdatacenter2

switchport trunk native vlan 45

switchport trunk allowed vlan 45,56

switchport trunk pruning vlan 2-44,46-55,57-1001,1006-4094

switchport mode trunk

end

Thanks for your time

1 REPLY

Re: trunk question, pruning?

Hello there,

I assume that your config will do what you desire but maybe it is a bit too restrictive. Pruning and disallowing vlans are easily forgotten when a vlan needs to be added.

The extra bandwidth that is gained through pruning is probably not worth the trouble. Besides, it may have undesirable side effects, on pvst for example.

There may be folks out there that use pruning to implement security but I'm one of them.

Regards,

Leo

104
Views
0
Helpful
1
Replies
CreatePlease login to create content