Hello. I've read here that Best practice suggest using a management vlan
So lets just say I want to use 10.1.1.0/24 as management for reachability to the cloud (this will be natted)
should this 10.1.1.0/24 be configured on my layer 3 gateway as a normal SVI along with my Data & Voice svi's and whatever else?
Solved! Go to solution.
@Mac1 : Well check the below thread for best practices. I would say always separate management and user data traffic VLANs and if possible not to use the Native VLAN ( Hardening)
I can give my native vlan whichever number i want, right? It doesn't have to be one does it?
Yes, you can have any number and dont use 1.
That is how I do it
@Mac1 : Check this out
By default, the switch will try to contact Meraki Dashboard on the untagged (native) VLAN. Alternately, you can specify the management VLAN under Configure > Switch settings. This allows the switch to reach the internet via a trunk port.
https://documentation.meraki.com/MS/Other_Topics/Switch_Settings
Thanks Inderdeep. So what is the best practice?
Native vlan or separate managment network?
Or use the Native vlan with the intended /24 network you were going to use as managment?
I can give my native vlan whichever number i want, right? It doesn't have to be one does it?
@Mac1 : Well check the below thread for best practices. I would say always separate management and user data traffic VLANs and if possible not to use the Native VLAN ( Hardening)
I can give my native vlan whichever number i want, right? It doesn't have to be one does it?
Yes, you can have any number and dont use 1.
Thanks for your help. Much appreciated.