[unisog] Who is using Management VLANs?
daniel at kickidle.com
Sat Apr 3 16:48:52 GMT 2004
-----BEGIN PGP SIGNED MESSAGE-----
> I'd be curious to know if you leave the management VLAN in VLAN 1,
> as many switching vendors recommend.
Cisco, at least, recommends not using VLAN 1. For a discussion of
VLAN security issues, you can see
.pdf and http://www.cisco.com/warp/public/473/103.pdf . If you're
not using Cisco, check for Best Practice Configuration guides from
your vendor for similar information.
I've implemented management vlans at sites (not a university) with
good results. It's a big step up over using your data vlans to
handle your management traffic. After implementing this, penetration
tests simulating internal and external attacks failed to compromise
any network device.
-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0.3
-----END PGP SIGNATURE-----
More information about the unisog