wansec

the layer 8 chronicles

Find Cisco VTP primary

by · May 21, 2021

Find Cisco VTP primary

How would you find Cisco VTP primary? If you’re trying to add a Virtual Local Area Network (VLAN) on a Cisco switch but unable to do so, it could be because your switch is in VTP CLIENT mode. When this happens, you may receive an error message saying VTP VLAN configuration is not allowed. This can be a frustrating and confusing experience, particularly if you’re new to working with Cisco switches.

One possible cause of this issue is that your switch is part of a VLAN Trunking Protocol (VTP) domain. VTP is a Cisco proprietary protocol used for managing and propagating VLAN configurations across a network of Cisco switches. However, it is no longer recommended by Cisco to use VTP and it can cause issues when adding new VLANs.

You error might look like this:

SW03(config)# vlan 2
VTP VLAN configuration not allowed when device is in CLIENT mode.

Fixing the VTP VLAN configuration not allowed

The solution to this problem is to locate the primary VTP server in your network. The primary VTP server is the switch that is responsible for managing and propagating VLAN configurations across the VTP domain. To locate the primary VTP server, you can run the following command on your switch:

SW03# show vtp status | include Primary Description
Primary Description : SW01

This command will display information about the VTP status of your switch, including the primary VTP server. The primary VTP server will be displayed as in the following example:

Primary Description : SW01

In this example, the primary VTP server is SW01. Once you have located the primary VTP server, you can disable VTP on it and this will allow you to add new VLANs on your switch without any issues.

It is important to note that disabling VTP would be a significant configuration change and should be done with caution. Before disabling it, you should verify that there are no other switches on the network that rely on VTP to manage their VLAN configurations. And also, you should have a good understanding of VLANs, VTP and how it works before disabling it.

In conclusion, if you’re experiencing issues when trying to add new VLANs on a Cisco switch that is part of a VTP domain, the problem may be caused by VTP. To resolve this issue, you should locate the primary VTP server in your network and disable VTP on it, but with caution and a good understanding of the network.

Conclusion

In conclusion, when trying to add a new VLAN on a Cisco switch that is part of a VTP domain, you may encounter difficulties due to VTP. The solution is to locate the primary VTP server in your network and disable VTP on it, but with caution and a good understanding of the network.

We hope this article has been helpful in understanding the issue and its solution. If you have any further remarks or questions, feel free to leave a comment below. We would be happy to assist you.

Gregory

Gregory

I'm Gregory from Switzerland, and this is a running log of thoughts, findings, and lessons learned over more than 20 years in IT. With a deep passion for networks and security, I focus on architecture, governance, and emerging technologies. My journey has taken me through complex challenges and continuous learning across various sectors. While this space mainly serves as my personal knowledge base, I hope that sharing these notes might also offer insights or inspiration to others navigating the ever-evolving digital landscape.

You may also like...

Leave a Reply

Your email address will not be published. Required fields are marked *

13 + = 22