>It is considered good form to leave VLAN1 only for management, although in
>small networks, it may not be as "critical". In a large network, however,
>doing this becomes very important. Here's some reasons why:
>
>1) Keeps most/all SNMP traffic off of data VLANs
>2) Adds an extra level of security, especially if you don't route to VLAN1
>3) Most important - keeps all of the host-generated broadcasts from the
>switches, which serves to reduce CPU load on the switches by not having to
>look at every single broadcast
>
>There are other reasons, but these are compelling enough to support this
>philosophy.
Your first two points are valid, but I don't see what a management
VLAN does for host broadcasts. An ARP, for example, goes from a
source to a destination IP address on the same subnet. While it is a
control rather than a data flow function, it must be on the same VLAN
as are both hosts.
_________________________________
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
