Network OS Administration Guide

Supporting Network OS 6.0.1a

Part Number: 53-1003768-04

Using the management VRF

Virtual Routing and Forwarding (VRF) is a technology that controls information flow within a network, isolating the traffic by partitioning the network into different logical VRF domains. Prior to Network OS release 5.0.0, routers were managed through the "default" VRF; any port that was part of the default VRF could be used for router management.

Beginning with Network OS release 5.0.0, the default VRF and other user-configured (nondefault) VRFs can no longer be used for router management. Inband management over ports that are part of the default VRF or another user-configured nondefault VRF are no longer supported. Support is now provided for the "management" VRF; this is a dedicated, secure VRF instance that allows users to manage the router inband on switched virtual interfaces (SVIs) and physical interfaces. and that is allowed only on management VRF ports. Services such as Telnet, FTP, SNMP, SSH, SCP, and NetConf are available only through the management VRF. However, Layer 3 routing protocols (such as OSPF, VRRP), including dynamic routing, are not supported. For details, as well as examples of configuring the management VRF and using a variety of show commands, refer to the “Understanding and using the management VRF” section in the Network OS Layer 3 Routing Configuration Guide.