Re: management vlan

[Graham Toal <gtoal () UTPA EDU>]

> You definitely want a separate management VLAN, and you 
> should definitely also use ACLs to restrict access to that 
> VLAN from your management subnets only.  Note that if you're 
> a Cisco shop, Cisco specifically recommends against using 
> VLAN 1.  You might also want to look at possibly putting the 
> management interfaces into RFC1918 space as well.

And if you're still at the planning stage, it may not be
too late to consider an air gap.  Separate wires and
switches.  I don't fully trust VLANs yet...

G