NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

xes's avatar
xes
Aspirant
Nov 18, 2016

Management VLAN doesn't seem to do anything

I have set up a M5300 switch with four VLANs. 1, 16, 32, and 72 using VLAN 72 as the Management VLAN. VLAN 72 is assigned to port 48. Ports 1-47 are assigned to VLANs 1,16 and 32.   The issue I am ...
Security
Troubleshooting
LaurentMa's avatar
LaurentMa
NETGEAR Expert
Nov 18, 2016

Hi xes

Welcome to the community.

If you have enable routing in your M5300 Managed switch with IP interfaces on your VLANs, then your Layer 2 boundaries are gone due to inter-VLAN routing. ACLs should be used to protect Management VLAN in that case. ACLs can be binded to VLANs directly for quick implementation for inbound or outbound depending on your requirements.

Without routing enabled, then in pure Layer 2 configuration, you are right Management VLAN should be isolated from other VLANs. Now, if VLAN 72 still present as PVID on ports 1-47 it would be normal everyone can access CPU.

Please let us know your configuration better, and maybe copy and paste your VLAN configuration and port membership from on your running config file here. It will certainly help other members as well.

Regards,

NETGEAR Academy

Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology! 

Join Us!

ProSupport for Business

Comprehensive support plans for maximum network uptime and business peace of mind.

 

Learn More