cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
Join Customer Connection to register!
196
Views
0
Helpful
5
Replies
saquib.tandel
Beginner

Access Switches

Hello

Transparent mode Vs Client mode which mode is recommended for access switches

Any template from cisco for access switch configuration covering needed security

thanks

ST

1 ACCEPTED SOLUTION

Accepted Solutions
Steven Clinton
Beginner

Here is a basic guide to secure your switch:

http://www.cisco.com/en/US/tech/tk648/tk361/technologies_tech_note09186a0080120f48.shtml

Also there is an autosecure option, but that can sometimes "over-secure" your devices, to the point where you can have problems reaching places you want to reach.

Please mark as correct if this answers your question :-)

Sent from Cisco Technical Support iPhone App

View solution in original post

5 REPLIES 5
Bilal Nawaz
Engager

If you are utilising VTP in a server client environment then use client.

If you are to create vlans separately on the switch, use transparent. (Commonly used)

Please ensure that you do not use the server mode as this could possibly wipe vlans out for an entire estate.

Please see this for further details
http://www.cisco.com/en/US/tech/tk389/tk689/technologies_tech_note09186a0080094c52.shtml

Sent from Cisco Technical Support iPhone App

Please rate useful posts & remember to mark any solved questions as answered. Thank you.
paul driver
VIP Mentor

Hello
vtp can be confusing at timee

access-switches requie client mode to receive the vtp database config off the vtp server

however this all depends on something a revison number

vtp servers and client read which has the highest value and the one with the highest value ( either vtp server or client) will propergate its vlan database to all other vtp server and clients.

transparent mode doesnt accept vtp configurarion but listens and forwards it.

so if you need to add a new switch to the network then change the switch to transparent mode then to client and the revision number will default to 0 and you will be safe to all the new switch to the network

res
Paul


Sent from Cisco Technical Support Android App



kind regards
Paul

Please rate and mark posts accordingly if you have found any of the information provided useful.
It will hopefully assist others with similar issues in the future
Steven Clinton
Beginner

Unless you have a large enterprise/campus setup that requires end-to-end vlans, it is a best practice to use transparent.

Even a client with a higher revision number can overwrite a server with a lower revision.

Sent from Cisco Technical Support iPhone App

thanks all

can someone share steps to secure an access switch

Steven Clinton
Beginner

Here is a basic guide to secure your switch:

http://www.cisco.com/en/US/tech/tk648/tk361/technologies_tech_note09186a0080120f48.shtml

Also there is an autosecure option, but that can sometimes "over-secure" your devices, to the point where you can have problems reaching places you want to reach.

Please mark as correct if this answers your question :-)

Sent from Cisco Technical Support iPhone App

View solution in original post