VTPv1 and v2 passwords can’t be encrypted in running-config.
VTPv3 can encrypt passwords.
By default a port that is trunking belongs to all VLANs
VTP will also follow the same behaviour with it’s VLAN replication, therefore on your VTP Server you need to apply VTP pruning which will then prune VLANs mirroring what is permitted on your trunks.
Once enabled on 1 VTP server, this is then enabled across entire VTP domain.
VTP v2 will perform a consistency check on names and numbers.
VTP versions do not play well together at all. Make consistent across the enterprise.
Cisco PDF: VTPv3
Overall and synchronised database of all VLANs in enterprise.
VTP advertisements that notify neighbouring switches in the same domain of any VLANs in existence on the switch sending the advertisements.
Can only belong to 1 VTP domain
Transparent VTP switches are locally significant.
VTP Version 1 The transparent switch will forward that advertisement information only if the VTP version number and domain name on that switch is the same of that of downstream switches.
VTP Version 2 The transparent switch will forward VTP advertisements via it’s trunk ports even if the domain name doesn’t match.
VTP Client is unable to create VLAN in any method. When using switchport access vlan 300, this will NOT create VLAN 300 in the database, as the client mode doesn’t have rights.
Multicast based but not sent out every port, as a result the advertisements are only sent via trunk ports.
When 1 switches LAN database changes, the config revision number is incremented.
Client receives advertisement and compared revision number to what is received on the incoming advertisement, this indicates the information is more recent as the revision number is higher. If the revision number is higher then it is ignored.
To reset a switches revision number to zero: (More art form then science)
- Change VTP domain name to a nonexistent domain, then change it back to the original name.
- Change the VTP mode to Transparent, then change it back to Server.
show vtp counters – Handy command!
- Summary Advertisements – Transmitted by VTP servers every 5 minutes,or upon a change in the VLAN database.
Information included in the summary advertisement:
- VTP domain name and version
- Confoguration revision number
- MD5 Hash Code
- Number of subset advertisments that will follow this ad
- Subset Advertisements – Transmitted by VTP servers upon a VLAN configuration change,
- Whether the VLAN was created, deleted, activated or suspended.
- The new name of the VLAN
- The new MTU
- VLAN Type (Ethernet, Token Ring, FDDI)
- Client Advertisement Requests – are just that! a request for VLAN information from the client. Why? Most likely the VLAN database has been corrupted or deleted. VTP Server will respond to this request with a series of Summary and Subset advertisements.