HPE Community
HPE Aruba Networking & ProVision-based
1830340 Members
2510 Online
110001 Solutions
New Discussion

management vlan

 
Brad_199
Frequent Advisor

‎12-13-2012 10:10 AM

‎12-13-2012 10:10 AM

management vlan

wondering what the general concensus is with regard to the management vlan.

is it too restrictive?
how do you access your switches?
0 Kudos
4 REPLIES 4
paulgear
Esteemed Contributor

‎12-13-2012 04:34 PM

‎12-13-2012 04:34 PM

Re: management vlan

I've used the management VLAN in a campus environment, where every building was connected via Gigabit fibre, and every VLAN was available wherever we wanted.  In that scenario, we used a management VLAN and only the management server and a couple of other devices were allowed on that VLAN.

 

If i were managing switches in a widely-distributed WAN, i wouldn't bother with the management VLAN, and would use "ip authorized-managers" instead.

Regards,
Paul
0 Kudos
Brad_199
Frequent Advisor

‎12-14-2012 06:30 AM

‎12-14-2012 06:30 AM

Re: management vlan

interesing, thanks paulgear.

it seems very restrictive but I guess it does depend on your setup.

I just wanted to see what others use........thanks
0 Kudos
Arimo
Respected Contributor

‎12-17-2012 09:01 AM

‎12-17-2012 09:01 AM

Re: management vlan

Hi

 

It doesn't really depend. It is restrictive, on purpose. The idea is that you can only access the device management with a client on the same VLAN / Subnet. No traffic will be routed in or out of that VLAN.


HTH,

Arimo
HPE Networking Engineer
0 Kudos
paulgear
Esteemed Contributor

‎12-17-2012 12:59 PM

‎12-17-2012 12:59 PM

Re: management vlan

Interestingly, the management VLAN still makes it into the OSPF LSDB unless you filter it explicitly, even though the switch can't route to or from it. (At least, it does on my 3400cl on firmware M.10.76.)
Regards,
Paul
0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.