06-28-2002 02:28 PM - edited 03-01-2019 11:10 PM
What are reasons why vlan1 should not be used on Cisco switches and routers?
06-28-2002 02:28 PM
The only significant thing about VLAN 1 is it's the default VLAN. Switch security can be enhanced by moving the management interface out of VLAN 1, but that's about it.
07-02-2002 01:50 AM
when i design a campus, i like to leave all user access and the management VLAN off of VLAN 1.
The argument is that when someone comes along and installs a switch without bothering to configure it - it wont work. So they cant mess up my carefully designed network by ignoring config.
Of course they can still get the config wrong, but this way they have to think about the config before the ports can talk to anything on another switch.
Stephen
07-02-2002 01:52 AM
when i design a campus, i like to leave all user access and the management VLAN off of VLAN 1.
The argument is that when someone comes along and installs a switch without bothering to configure it - it wont work. So they cant mess up my carefully designed network by ignoring config.
Of course they can still get the config wrong, but this way they have to think about the config before the ports can talk to anything on another switch.
Stephen
07-02-2002 12:22 AM
VLAN1 is usually the management VLAN. It is then recommended not to use it to carry "normal" data. This way, if a broadcast storm occurs in a data vlan for instance, switches can still be accessed via the management VLAN.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide