Buy or Renew
Buy or Renew
Cisco + Splunk: Itā€™s a new day for your data. Learn more.
Ā 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 
cancel
Start a conversation
999
Views
0
Helpful
2
Replies

Prohibit access to switch ports with untagged vlan

Go to solution
rumak18
Level 1
Level 1

ā€Ž02-03-2021 02:14 AM

Hello,

 

i want to secure my switche from foreign access. I want to make sure, that only computers with the correct VLAN setting (tagged vlan) on his network card is able to get access to this switch. I do not want this this switch to send out untagged packets through ports. 

Is there a way for this?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Seb Rupik
VIP Alumni
VIP Alumni

ā€Ž02-03-2021 02:23 AM

Hi there,

You will need to configure the switchport as mode trunk, and change the default native VLAN to one in a suspended state:

!
vlan 100
  name user_vlan
!
vlan 999
  name UNUSED
  state suspend
!
int gi1/0/'1
  switchport mode trunk
  switchport trunk allowed vlan add 100
  switchport trunk native vlan 999
  no shut
!

cheers,

Seb.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Seb Rupik
VIP Alumni
VIP Alumni

ā€Ž02-03-2021 02:23 AM

Hi there,

You will need to configure the switchport as mode trunk, and change the default native VLAN to one in a suspended state:

!
vlan 100
  name user_vlan
!
vlan 999
  name UNUSED
  state suspend
!
int gi1/0/'1
  switchport mode trunk
  switchport trunk allowed vlan add 100
  switchport trunk native vlan 999
  no shut
!

cheers,

Seb.

0 Helpful

Go to solution
rumak18
Level 1
Level 1
In response to Seb Rupik

ā€Ž02-03-2021 02:58 AM

Oh wow. Great and short. I will try it. Didn't know that you can suspend vlans. 

0 Helpful
Customers Also Viewed These Support Documents