Hello everyone,
I have just been browsing through the AOS-CX 10.10 Virtual Switching Extension (VSX) manual. On page 78 there is a sample configuration for VSX with Spanning Tree.
What made me suspicious is a line in which the VLANs 1-512 are activated. However, only 24 VLANs are configured for Spanning Tree in the instance settings.
If I understand this correctly, all other VLANs go to instance 0.
Does this mean that someone has 512 VLANs enabled but only uses 24, is it good practice to enable all VLANs and then only configure the ones you want to use?
With many switches, you can certainly avoid configuration errors sneaking in this way. But isn't that also a security risk?
Regards