diff --git a/device-cisco-2960-1.yml b/device-cisco-2960-1.yml
index bebdfe5..bdc48b4 100644
--- a/device-cisco-2960-1.yml
+++ b/device-cisco-2960-1.yml
@@ -8,3 +8,32 @@
         banner: login
         text: "Documentation here: https://wiki.netz39.de/internal:inventory:network:2960s-24td-l"
         state: present
+
+    - name: configure vlans
+      cisco.ios.ios_vlans:
+        config:
+          - name: lan
+            vlan_id: 4
+            state: active
+            shutdown: disabled
+          - name: wan
+            vlan_id: 5
+            state: active
+            shutdown: disabled
+          - name: service
+            vlan_id: 7
+            state: active
+            shutdown: disabled
+          - name: legacy
+            vlan_id: 8
+            state: active
+            shutdown: disabled
+          - name: dmz
+            vlan_id: 9
+            state: active
+            shutdown: disabled
+          - name: ffmd-client
+            vlan_id: 11
+            state: active
+            shutdown: disabled
+        state: merged
diff --git a/host_vars/cisco-2960-1.n39.eu/vars.yml b/host_vars/cisco-2960-1.n39.eu/vars.yml
index 70c3870..8d6a7c4 100644
--- a/host_vars/cisco-2960-1.n39.eu/vars.yml
+++ b/host_vars/cisco-2960-1.n39.eu/vars.yml
@@ -5,28 +5,3 @@ ansible_password: "{{ vault_ansible_password }}"
 ansible_become_password: "{{ vault_ansible_password }}"
 ansible_connection: network_cli
 ansible_network_os: ios
-vlans:
-  - id: 2
-    name: voip
-  - id: 3
-    name: av
-  - id: 4
-    name: lan
-  - id: 5
-    name: wan
-  - id: 6
-    name: tor
-  - id: 7
-    name: service
-  - id: 8
-    name: legacy
-  - id: 9
-    name: dmz
-  - id: 10
-    name: ffmd-wan
-  - id: 11
-    name: ffmd-client
-  - id: 12
-    name: ffmd-mesh
-  - id: 4000
-    name: internet