Meraki Community

KJR

I've seen articles about not configuring native VLAN for security purposes.

I have a questions as to how to do so in terms of the MX appliances, can anyone provide guidance?

Should I use drop untagged traffic, VLAN 50 for management or create a VLAN that I won't use for this purpose?

alemabrahao

I believe this is not the meaning, generally avoiding using VLAN 1, and only allowing VLANs that will actually be used in the Trunk, but you do not need to avoid the native VLAN.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.

View solution in original post

alemabrahao

I believe this is not the meaning, generally avoiding using VLAN 1, and only allowing VLANs that will actually be used in the Trunk, but you do not need to avoid the native VLAN.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.

KJR

So avoiding the use of the default VLAN 1 and using a created VLAN for the Native VLAN would be fine?

alemabrahao

Yes, it doesn't mean you'll have a super secure network, these are just best practices, but security goes far beyond that.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.

Meraki Community

Native VLAN Configuration

Native VLAN Configuration