16 - VTP Configuration

Question 1

How to configure the Domain name ?

Answer 1

Global mode

> VTP Domain ________ (case sensitive)

Question 2

How to configure the MODE ?

Answer 2

- VTP mode Server
or 
- VTP mode Client
or
- VTP mode Transparent

Question 3

Verification commands are ?

Answer 3

> show VTP status

It shows - if server, client, or transparant, VTP domain name.

Question 4

Every time you add a Vlan what happens ?

Answer 4

The VTP revision increases

Question 5

How to reset the VTP revision

Answer 5

Change to transparent mode then back to server mode.

Question 6

How to default a configured VTP switch

Answer 6

• VTP mode transparant

- VTP name NULL - Null is the same as no name

Question 7

Is there a Vlan limit to VTP ?
If so by how much ?
& on what mode ?

Answer 7

• VTP is limited by 1001 vlans - on server mode.
• If you do try to config e.g Vlan 2000 the error message will pop up when you exit.
• On transparent mode there is no limits.

Question 8

What is the Default VTP mode on a switch ?

Answer 8

Server mode is default

Question 9

What can happen if we leave a switch on the default VTP mode ?

And also left on the Default Trunk Negotiate mode on ?

Answer 9

Server mode is default, as server mode to server mode copies info from each other the switch will:

• Copies the VTP domain name from the other switch
• Copies the vlan Database

This is also a security breach as a malicious person can change Vlan settings.

To resolve this is to

• turn off trunk Auto negotiate interface
• make a VTP domian name before adding to the network

Question 10

To resolve VTP Hacking

• turn off the trunk Auto negotiate interface
• make a VTP domian name before adding to the network

how do we turn off Auto negotiate ?

Answer 10

> interface range fa 01/-24

>switchport mode access (only after this can you do >switchport nonegotiate)