Re: VTP Question
From: brussels (brussels@yandex.ru)
Date: Tue Jun 07 2005 - 08:08:01 GMT-3
So everyone can see, that there is no way to completely disable VTP functionality (packets) on trunk ports.
In point of fact question below is incorrect, because it is equivocal, depending on what direction of traffic do we mean.
"Restrict the VTP Traffic from reaching all the 24 fast Ethernet ports of the switch"
In case of incoming VTP packet, it will always be accepted and at least md5-checksumed unless there is no inbound mac-level ACL configured on the port. In case of outgoing VTP packet there is no way (unless VTP Version 3 enabled) to block outgoing packet if VTP domain of incoming packet is the same even in transparent mode.
Looking at all sample labs i always observe this flaws :((
>I see brussles has answered the question about transparent mode
>forwarding on VTP packets, so I would go with transparent mode.
>
>From the doc CD:
>
>Version-Dependent Transparent Mode�In VTP version 1, a VTP transparent
>network device inspects VTP messages for the domain name and version,
>and forwards a message only if the version and domain name match.
>Because only one domain is supported in the supervisor engine
>software, VTP version 2 forwards VTP messages in transparent mode,
>without checking the version.
>
>Good to know that about the different versions.
>
>Roy
>
>On 6/7/05, Roy Dempsey <roy.dempsey@gmail.com> wrote:
>> Lee,
>>
>> I think your solution would work. However, on a lab scenario, I think
>> its unlikely there would be no trunk between the switches.
>>
>> I'm not sure where this questions is from, but I think it *could* also
>> mean setting the switch to transparent mode, as this would stop the
>> switch from generating VTP packets.
>>
>> VTP packets received from other switches wouldn't be processed but
>> would be forwarded however, so I'm not 100% sure this would achieve
>> the required results.
>>
>> I would like to see this question in context to give a definitive
>> answer .i.e was there a requirement to configure trunk links etc.
>>
>> Regards
>> Roy
>>
>> On 6/7/05, Lee Donald <Lee.Donald@t-systems.co.uk> wrote:
>> > Noble,
>> >
>> > I would deduce from this question that it wants to change each port to
>> > "switchport Access" mode so that VTP frames are not sent out, by default all
>> > ports will be dynamic.
>> >
>> > Regards
>> >
>> > Lee.
>> >
>> >
>> >
>> > -----Original Message-----
>> > From: T. N. Noble [mailto:noble@inserviceindia.com]
>> > Sent: 07 June 2005 10:51
>> > To: ccielab@groupstudy.com
>> > Subject: VTP Question
>> >
>> > Hello Group,
>> >
>> > Can anybody help me to understand the following question correctly?
>> >
>> > "Restrict the VTP Traffic from reaching all the 24 fast Ethernet ports of
>> > the switch". Is this question talking about VTP Pruning? I understand that
>> > the VTP pruning is related to Trunks where as here the switch ports are in
>> > Access Mode.
>> >
>> > Thanks,
>> >
>> > Noble
>> >
>> > _______________________________________________________________________
>> > Subscription information may be found at:
>> > http://www.groupstudy.com/list/CCIELab.html
>> >
>> > _______________________________________________________________________
>> > Subscription information may be found at:
>> > http://www.groupstudy.com/list/CCIELab.html
>> >
>>
>>
>> --
>> Regards,
>> Roy
>>
>
>
>--
>Regards,
>Roy
>
>_______________________________________________________________________
>Subscription information may be found at:
>http://www.groupstudy.com/list/CCIELab.html
This archive was generated by hypermail 2.1.4
: Wed Jul 06 2005 - 14:43:41 GMT-3