[ietf81-tech] An after-the-fact way to find interface trunk/access misconfigurations
Bill Fenner
fenner at gmail.com
Sat Jul 23 10:18:39 PDT 2011
http://management.meeting.ietf.org/netdisco/device.html?ip=130.129.1.23
currently says:
PortDuplex
(Link/Admin)NameSpeedNative
VLANVLAN
MembershipConnected
Devices...
GigabitEthernet0/5full/fulldefault1.0
Gbps11<http://management.meeting.ietf.org/netdisco/device_search.html?specific=vlan_dev&vlan=1>ap130.meeting.ietf.org
(GigabitEthernet0.1)<http://management.meeting.ietf.org/netdisco/device.html?ip=130.129.2.130&port=GigabitEthernet0.1>
This is the sign of a port configured as "access", not "trunk": "VLAN
Membership" should be "All":
PortDuplex
(Link/Admin)NameSpeedNative
VLANVLAN
MembershipConnected
Devices...
GigabitEthernet0/7full/fulldefault1.0 Gbps1Allap105.meeting.ietf.org
(GigabitEthernet0.1)<http://management.meeting.ietf.org/netdisco/device.html?ip=130.129.2.105&port=GigabitEthernet0.1>Sadly,
this info only appears once a port is up, meaning that this is only useful
after the fact.
It's not completely ridiculous to consider a script that tries to detect
this -- e.g., look for a port that says it has an AP attached to it but
doesn't have all VLANs.
Bill
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://www.daedelus.com/pipermail/ietf81-tech/attachments/20110723/2e2b0732/attachment-0001.html
More information about the Ietf81-tech
mailing list