Question : MANAGEMENT VLAN SEPARATION

Hello,
We recently had an inspection and there was a discovery found that requires us to separate our management vlan from all other traffic. What I need to know is how can this be accomplished. Currently our management vlan is 6 and all other traffic is 10 we also use different native vlans for each. Is it possible to have two different native vlans going through the same trunk? If I use the management vlan 6 native to connect all network devices using dot1q is it still possible to pass traffic through that same trunk?

Answer : MANAGEMENT VLAN SEPARATION

So there are two differences to point out here. Management VLAN does not necessarily equate to native vlan. The native vlan is simply the particular vlan that is not tagged crossing a trunk port. This native vlan needs to be the same on each end of that particular trunk and that is it. So a trunk between switch A and switch B the native vlan could be 6 and on a trunk between switch A and switch C it could be 42.

The management vlan is typically the vlan we put the layer 3 ip addresses of our network equipment into for managing the boxes. So if we choose to make the management vlan 100 for all of our equipment we will make sure that vlan 100 is trunked to all of our equipment, but it does not have to be the native vlan. Then we will set the layer 3 interface on our switches to be in vlan 100 and give it an ip address on vlan 100.

Hope that makes sense.

Random Solutions

Share a computer (running win xp) with two users simultaneously?

Network issues please help

HOME NETWORKING IS INFURIATING! MSHOME is not accessible. . . .

network two computers using ethernet crossover cable

sbs 2000 question

FTP in VB6 using FtpGetFile API is not saving the file

Which is safest, PASV or ACTIVE FTP for my Windows 2003 server?

No translation group found for tcp src outside

Event ID: 5773 is showing once a day in the system error log. I can't figure out how to make it stop.

DNS Query Rate Control