Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations TouchToneTommy on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

How to setup VLAN on Cisco catalyst 3500XL

Status
Not open for further replies.
glynnj

glynnj

Programmer
Jun 5, 2002
25
IE
How do you set up a Static VLAN on a Cisco Catalyst 3500XL switch, using the Cisco Switch Manager 12.0 web interface?

I am new to network switches so apologies if this is very basic.

My understanding of VLAN's is that ports in one VLAN are completely separate from ports in another VLAN?

Are VLANs secure, ie is there any way for devices connected to one VLAN to access(Ping, Telnet, etc) devices connected to another VLAN?

Thanks and regards,
Joe
 
Sort by date Sort by votes
VLANs are absolutely secure. There is no way to cross from VLAN to another unless you configure your network to do so.
shnypr-small.gif
 
Upvote 0 Downvote
Not true... we had to open a TAC report with respect to leakage between VLANs that were running IPX on a Cat6500. Certain types of packets were leaking across the boundry. I also remember a issue with a version of IOS that leaked packets in certain circumstances. So VLANs are not absolutely secure.. they are reasonably secure and you should sniff the VLAN to make sure it is as secure as you think.

::snip::
Findings
========
We found that under specific conditions it was possible to inject frames into one VLAN and have them 'hop' to a different VLAN. This is a serious concern if the VLAN mechanism is being used to maintain a security gradient between two network segments. This has been discussed with Cisco and we believe that it is an issue with the 802.1q specification rather than an implementation issue.
:::snip::

entire article:

My own notes from the newsgroup posting here:

MikeS
Find me at
"Take advantage of the enemy's unreadiness, make your way by unexpected routes, and attack unguarded spots."
Sun Tzu
 
Upvote 0 Downvote
In answer to the first question,

here is a link from Cisco on creating and feeding of VLANs on the 2900/3500


Also, I have a tutorial written for the 2900 but it will apply to your 3500:


The tutorial will take you step by step through basic switch configuration and making of vlans with trunks.

MikeS
Find me at
"Take advantage of the enemy's unreadiness, make your way by unexpected routes, and attack unguarded spots."
Sun Tzu
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

CPM86
  • Locked
  • Question
Cisco isr 4331 with IOS and sip busy fail over to 2nd sip number on pbx?
Replies
0
Views
378
CPM86
CPM86
B
  • Locked
  • Question
Cisco IP phone 7841 8851 unable to forward all to external number
Replies
0
Views
237
badwolf1686
B
Skip Rango
  • Locked
  • Question
how to backup cisco sg500-52p switch
Replies
1
Views
592
madwok
madwok
pbxcomm
  • Locked
  • Question
CISCO VG450
Replies
1
Views
607
nt8d09
nt8d09
Jared R
  • Locked
  • Question
Cisco UC320W Paging Help
Replies
0
Views
559
Jared R
Jared R

Part and Inventory Search

Sponsor

Back
Top