Cisco Membatasi tarafik vlans pada interface trunk

switch# show interface trunk

Port        Mode             Encapsulation      Status             Native vlan
Et0/0       on                  802.1q                trunking              1
Port        Vlans allowed on trunk
Et0/24      1-4094
port        Vlans allowed and active in management domain
Et0/24       1,14,15,16,70
Port        Vlans in spanning tree forwarding state and not pruned
Et0/24       1,14,15,16,70


interface 0/24 (trunk)  mengizinkan vlan 1 sd 4094
Padahal kita hanya memiliki vlan 1,14,15,16,70
Hal ini akan sangat membahayakan jaringan kita.
Jadi disarankaGkan vlan yang dibutuhkan saja.


CONFIG PADA SWITCH
Switch#config terminal
Switch(config)#
Switch(config)#int fa 0/24
Switch(config-if)#switchport trunk allowed vlan 1,14,15,16,70
Switch(config-if)#ex
Switch(config)#ex
Switch#


Interface trunk setelah dibatasi, sesuai kebutuhan

Switch#sh int trunk
Port                   Mode       Encapsulation Status       Native vlan
Fa0/24                  on         802.1q trunking                     
Port Vlans allowed on trunk
Fa0/24 1,14-16,70
Port Vlans allowed and active in management domain
Fa0/24 1,14,15,16,70
Port Vlans in spanning tree forwarding state and not pruned
Fa0/24 1,14,15,16,70