if i etherchannel the trunks what happens, if one link goes down does it fail over to the one remaining link?

When one link in ether channel fails, traffic is automatically forwarded through the remaining links in the bundle.

i will have 4 - 5 additional 3000 series switches all on vlan 1 that are trunked back to 1 of the 4507s through fiber as well. Can i get away without using VTP?

You should be fine. IF you have a lot of vlans (say 50), you would have to recreate all those vlans in the databases of all switches manually and then assign those vlans to individual switch ports.

With VTP, all you gain is the creation of vlans in the database of each switch automatically. VTP propagates vlan info from one centralized switch to all other switches in the same domain (VTP version and password should also match if configured).

Once the database is sync'ed, you will still have to manually assign each vlan to appropriate ports.

You should be just fine with or without VTP.

HTH

thanks for all of your help. i have 2 more quick questions. On my 5th 3000 series switch i will have run out of fiber ports. is it better to use a fiber port in one of the supervisor cards, to use a crossover cable and put printers on the switch, or to put it into the fiber port of one of the other 3000s. (i would personally think option one is best).

Also, on my PIX 515 i have a vlan for DMZ that currently goes to a switch thats being removed. in that switch is a VPN concentrator. is it bad practice to put the vpn concentrator right into a dmz vlan i create on the 4507?

Hey I thought that I would just mention that it's a bad idea to have data traffic and managment traffic on the same VLAN. Typically VLAN 1 is the managment VLAN and I would make another VLAN for data.

I try to keep just managment traffic on VLAN1. Also like to use VTP - it keeps management of VLAN simple. Additionally I like to use pruning in my VTP setup but some people do not like that.

Andy

what do you mean by management traffic, telnet traffic to the switch? Also, what benefit do you see in pruning?

Management traffic is like your telnet, SNMP traffic that is used to manage the switch.

Prunning will save the bandwidth on the trunk links by prunning the unwanted broadcast on the trunks for a particular vlan if not host is active on that vlan on a switch. I.e If you dont have any active host on a vlan on a particular switch and if there is a broadcast on that vlan which will come over the trunk so if no host is active that broadcast is prunned on the trunk where no host is active on the switch.

regards,

-amit singh

thanks for all of your help. i have 2 more quick questions. On my 5th standalone 3000 series switch i will have run out of fiber ports on the 6 port fiber blade. is it better to use a fiber port in one of the supervisor cards, to use a crossover cable and put printers on the switch, or to put it into the fiber port of one of the other standalone 3000s. (i would personally think option one is best).

Also, on my PIX 515 i have a vlan for DMZ that currently goes to a switch thats being removed. in that switch is a VPN concentrator. is it bad practice to put the vpn concentrator right into a dmz vlan i create on the 4507?

Andy,

This idea seems very beneficial. Forgive my ignorance but i am trying to make sense of the config. interface GigabitEthernet2/1 and interface GigabitEthernet2/2 are these the interfaces on the 2nd 4507?