08-08-2006 01:44 AM - edited 07-04-2021 12:48 PM
Does anyone know when the Aironet access points will be able to use any nominated VLAN as the management VLAN instead of VLAN 1?
Currently we have a successful dot1X (EAP-TLS) implementation running but I am a little concerned with having to use VLAN1.
Ideally I'd like to use bespoke VLAN ID to improve security.
Cheers
DH
08-08-2006 07:36 AM
Cisco Aironet IOS Based devices can accomplish this today, please reference this document http://www.cisco.com/en/US/customer/products/ps5861/products_configuration_guide_chapter09186a00804158b8.html
It outlines creating an SVI for Management purposes.
10-26-2006 09:11 AM
Hmm.. The document you point me to is Aironet 1300 whereas I use the 1200. Though I didn't make this completely clear to be fair.
There is a caveat at the start of the 1200 Series docs that states the equipment must use VLAN1 for management and authorisation.
My question was whether Cisco had managed to remove this limitation as most intrusion based attacks on network infrastructure equipment target VLAN 1 by default.
Anybody else got any ideas? I repeat, the WLAN is working fine and this is only a "nice to have" scenario.
Thanks
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: