VLAN - Firewall Rules for Native Interface

  • I am going to transition my networks to using VLANs on a single smart switch. I have read the tutorials and understand that I will be, essentially, creating virtual interfaces for each VLAN tag that I use on the switch. And I will create firewall rules for each of these virtual interfaces. What firewall rule(s), if any, should I have on the native interface (i.e., the trunk adapter)? Because I will be tagging each port, should I drop any untagged packet that I receive on the trunk (i.e., the native adapter)?