INE R&S ATC004 - VTP, VTP Authentication, VTP Pruning

VLAN Trunking Protocol (VTP)
- NOT a requirement of Ethernet networks
-- Does not define the broadcast domain
-- Used to advertise VLAN attributes
-- Just for administration

VLAN Database vs. Global Configuration
- Domain Name
- Modes
-- Server
-- Client
-- Transparent
- Authentication
- Pruning
- Version

Authentication預設為Null....+VTP Revision = 產出MD5 Digest HASH (就是最後的VTP Database)
密碼改了 ............MD5 Digest Hash就會變...
VLAN有新增/刪除造成VTP Revision 增加...MD5 Digest Hash就會變...

--------------------------------------------------------
VTP Client無法Add/Delete VLAN
若於VTP Client的SW PORT上.....設定
switchport access vlan X會成功(並不會告訴你有任何錯誤)
但是show spanning-tree vlan X會出現Spanning tree instance(s) for vlan X does not exist
另外show mac address-table dynamic vlan X也不會出現任何關於VLAN X的MAC CAM TABLE

唯一方式....在VTP Server上........設定vlan X..........
VLAN X進入BLOCK...LISTEN..LEARN...FORWARDING

記住NO VLAN..........NO Connectivity...............
--------------------------------------------------------

VTP密碼不對...就無法接受VTP info...........

VTP Authentication
- Used for validation of VTP updates
- Configuring / Verifying
-- vtp password
-- show vtp password
-- show vtp status
- compare MD5 hashes
--------------------------------------------------------
VTP Pruning

- Reduces unnecessary replication of…
-- Broadcasts
-- Unknown unicasts
-- Unknown multicast

當然可以使用L3區隔可以減少Broadcast....或是VLAN Trunk filter list..........
不然就是VTP Pruning....

- Only supported on in server & client mode

- Configuring / Verifying
-- vtp pruning
-- show interface trunk
-- show interface pruning

show interface pruning..........

上面pruned for lack of request by neighbor為SW OUTBOUND方向...因為鄰居不需要這些VLAN
下面VLAN traffic requested of neighbor為SW expect INBOUND方向...因為SW需要這些VLAN