Understanding Virtual LANs. Agenda What Is a VLAN? How Does it Work? VLAN Technologies.

Slides:



Advertisements
Similar presentations
Virtual Trunk Protocol
Advertisements

LAN Segmentation Virtual LAN (VLAN).
© 2006 Cisco Systems, Inc. All rights reserved. ICND v2.3—2-1 Extending Switched Networks with Virtual LANs Introducing VLAN Operations.
Virtual LANs.
Cisco 3 - Switch Perrine. J Page 15/8/2015 Chapter 8 What happens to the member ports of a VLAN when the VLAN is deleted? 1.They become inactive. 2.They.
VLANs Module 2. 2 VLANs  VLANs  Trunking  VLAN Trunking Protocol (VTP)
Ch. 9 – VLANs (Virtual LANs)
VLANs (Virtual LANs) CS 158B Elaine Lim Allison Nham.
1 27-Jun-15 S Ward Abingdon and Witney College VLAN Trunking protocol CCNA Exploration Semester 3 Chapter 4.
Layer 2: Redundancy and High Availability Part 1: General Overview on Assignment 1.
Virtual LANs. VLAN Overview Segmentation Flexibility Security 3rd floor 2nd floor 1st floor SALESHRENG A VLAN = A broadcast domain = Logical network (subnet)
© Wiley Inc All Rights Reserved. CCNA: Cisco Certified Network Associate Study Guide CHAPTER 8: Virtual LANs (VLANs)
© 2006 Cisco Systems, Inc. All rights reserved. ICND v2.3—2-1 Extending Switched Networks with Virtual LANs Configuring VLANs.
Virtual LANs. VLAN introduction VLANs logically segment switched networks based on the functions, project teams, or applications of the organization regardless.
Sybex CCNA Chapter 9: VLAN’s Instructor & Todd Lammle.
Ch. 8 – VLANs (Virtual LANs)
CCENT Study Guide Chapter 11 VLANs and Inter-VLAN Routing.
© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—2-1 Implementing VLANs in Campus Networks Applying Best Practices for VLAN Topologies.
Ethernet Errors and Problems
Instructor & Todd Lammle
Sybex CCNA Chapter 11: VLAN’s Instructor & Todd Lammle.
VLAN Trunking Protocol
CN2668 Routers and Switches (V2) Kemtis Kunanuraksapong MSIS with Distinction MCTS, MCDST, MCP, A+
Building Cisco Multilayer Switched Networks (BCMSN)
Chapter 9 – Implementing Ethernet Virtual LANs
Chapter 9 Virtual LANs (VLANs). Setup 1 Setup 2.
VLAN V irtual L ocal A rea N etwork VLAN Network performance is a key factor in the productivity of an organization. One of the technologies used to.
Chapter 8: Virtual LAN (VLAN)
© 1999, Cisco Systems, Inc. Module 9: Understanding Virtual LANs.
CCNA 3 Week 9 VLAN Trunking. Copyright © 2005 University of Bolton Origins Dates back to radio and telephone Trunk carries multiple channels over a single.
Cisco 3 - LAN Perrine. J Page 110/20/2015 Chapter 8 VLAN VLAN: is a logical grouping grouped by: function department application VLAN configuration is.
Author: Bill Buchanan. 1. Broadcast: What is the MAC address of this network address? 2. Requested host: All the hosts read the broadcast and checks.
© 2002, Cisco Systems, Inc. All rights reserved..
Medium-Sized Switched Network Construction NetPro-ITI Implementing VLANs and Trunks.
1 © 2003, Cisco Systems, Inc. All rights reserved. CCNA 3 v3.0 Module 8 Virtual LANs.
Switching Basics and Intermediate Routing CCNA 3 Chapter 8.
1 © 2003, Cisco Systems, Inc. All rights reserved. CCNA 3 v3.0 Module 9 Virtual Trunking Protocol.
Cisco S3C3 Virtual LANS. Why VLANs? You can define groupings of workstations even if separated by switches and on different LAN segments –They are one.
1 © 2003, Cisco Systems, Inc. All rights reserved. CCNA 3 v3.0 Module 8 Virtual LANs Cisco Networking Academy.
© 1999, Cisco Systems, Inc. 4-1 Chapter 10 Controlling Campus Device Access Chapter 4 Defining Common Workgroups © 1999, Cisco Systems, Inc
Chapter 3 - VLANs. VLANs Logical grouping of devices or users Configuration done at switch via software Not standardized – proprietary software from vendor.
Switching Topic 2 VLANs.
1 © 2003, Cisco Systems, Inc. All rights reserved. CCNA 3 v3.0 Module 9 VLAN Trunking Protocol Cisco Networking Academy.
Configuring VLAN Chapter 14 powered by DJ 1. Chapter Objectives At the end of this Chapter you will be able to:  Understand basic concept of VLAN  Configure.
Chapter 4 Version 1 Virtual LANs. Introduction By default, switches forward broadcasts, this means that all segments connected to a switch are in one.
CCNA3 v3 Module 9 v3 CCNA 3 Module 9 JEOPARDY K. Martin.
Instructor & Todd Lammle Sybex CCNA Chapter 9: VLAN’s 1.
W&L Page 1 CCNA CCNA Training 2.5 Describe how VLANs create logically separate networks and the need for routing between them Jose Luis.
VLAN Trunking Protocol
Cisco 3 - Switch Perrine. J Page 12/4/2016 Chapter 9 Which protocol is Cisco proprietary and designed to carry traffic from multiple VLANs? A Q.
1 Version 3.0 Module 8 Virtual LANs. 2 Version 3.0.
1 15-Mar-16 VLAN Trunking protocol CCNA Exploration Semester 3 Chapter 4.
Presented BY Kanav Dev Singh B.Tech I.T (8 Th sem)
LAN Switching Virtual LANs. Virtual LAN Concepts A LAN includes all devices in the same broadcast domain. A broadcast domain includes the set of all LAN-connected.
CCNA3: Switching Basics and Intermediate Routing v3.0 CISCO NETWORKING ACADEMY PROGRAM Chapter 8 – Virtual LANs Virtual LANs VLAN Concepts VLAN Configuration.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 VLANs.
Instructor Materials Chapter 2: Scaling VLANs
Switching and VLANs.
© 2002, Cisco Systems, Inc. All rights reserved.
Virtual Local Area Networks or VLANs
Switching and VLANs.
Extending Switched Networks with Virtual LANs
VLAN Trunking Protocol
Virtual LANs.
Chapter 2: Scaling VLANs
Switching and VLANs.
Switching and VLANs.
CCNA 3 v3 JEOPARDY Module 9 CCNA3 v3 Module 9 K. Martin.
Chapter 2: Scaling VLANs
Presentation transcript:

Understanding Virtual LANs

Agenda What Is a VLAN? How Does it Work? VLAN Technologies

Constraints of Shared LANs Users are physically bound Subnets are tied to hubs Users are grouped by location No security on segment Addressing is constrained Moves require address changes Router ports are expensive

Virtual LANs One broadcast domain within a switch VLANs help manage broadcast domain Can be defined on port groups, users, or protocols LAN switches and network management software provide a mechanism to create VLANs Server Farm VLAN 1 VLAN 2 VLAN 3

Remove the Physical Boundaries Group users by department, team, or application Routers provide communication between VLANs EngineeringMarketingAcctg. Floor 3 Floor 2 Floor 1

VLAN Benefits Reduced administrative costs Simplify moves, adds, and changes Efficient bandwidth utilization Better control of broadcasts Improved network security Separate VLAN group for high-security users Relocate servers into secured locations Scalability and performance Microsegment with scalability Distribute traffic load

Approaches Can Vary Performance Port-Based VLAN 1 VLAN 2 VLAN 3 Layer 3-Based Subnet xx VLAN 1VLAN 2 Subnet xx VLAN 2 MAC-Based VLAN 1 MAC Addresses Establishing VLAN Membership Port driven MAC address driven Network address driven Application type driven

Multiple VLANs per Port Broadcast Outgoing Mac 1 Mac 2 Mac 3 Mac 4 Mac 5 Mac 6 Mac 7 Mac 8 Mac 9 Mac 10 Mac 11 Mac 12 Broadcast Incoming Does This Make Sense in Switched/Shared LANs? Requested when multiple clients are attached Requires address lookups Cannot filter broadcasts on shared segment Results in lots of administration, little return Hub

Two Physical Topology Approaches Communicating Between VLANs Layer 3 links VLANs together Adds additional security and management Logical links conserve physical ports Multimode, depending on protocol Controls access by VLAN Up to 255 VLANs per router VLAN 2 VLAN 3 VLAN 1 Cisco Internetworking Software VLANs 1, 2, 3 Logical Communication Physical Link per VLAN

VLAN Technologies

Inter-Switch Link VLAN Tag Added at Incoming Port VLAN Tag Stripped by Forwarding Port Inter-Switch Link (ISL) Carries VLAN Identifier Interconnects multiple switches and maintains VLAN information as traffic goes between switches Establishes membership through ASICs Labels each packet as received (“packet tagging”) Eliminates lookups and tables Transports multiple VLANs across links Protocol, endstation-independent Easily managed ISLISL 802.1Q LANE

Wide vendor endorsement for 802.1Q tagging standard Cisco supports across Fast Ethernet, Gigabit uplinks Cisco maps ISL to 802.1Q dynamically with VTP Packet Tagging as Common VLAN Exchange VLAN Standardization Level-1 Explicit Tagging SRC DESSRC Data DES SRC FCS FCS DESSRCFCS VLAN ID

802.1Q VLAN Standard Implementation Cisco environment uses ISL Vendor environment uses an existing, yet different packet tagging method Interdomain communication based on 802.1Q standard Si Cisco Domain Vendor X Domain ISL ? Company ABC Typical Environment

VLAN administration and configuration protocol Reduces VLAN setup and administration Eliminates configuration errors Decreases network manager’s time adding and managing VLANs Maintains security between VLANs Virtual Trunk Protocol (VTP)

(config)#hostname uniti_1900 uniti_1900(config)#vlan 2 name sales uniti_1900(config)#vlan 3 name marketing uniti_1900(config)#exit uniti_1900#sh vlan VLAN Name Status Ports default Enabled 1-12, AUI, A, B 2 sales Enabled 3 marketing Enabled 1002 fddi-default Suspended 1003 token-ring-defau Suspended 1004 fddinet-default Suspended 1005 trnet-default Suspended [ output cut] 1900 Series (1)

uniti_1900(config)#int e0/2 uniti_1900(config-if)#vlan-membership ? dynamic Set VLAN membership type as dynamic static Set VLAN membership type as static uniti_1900(config-if)#vlan-membership static ? ISL VLAN index uniti_1900(config-if)#vlan-membership static 2 uniti_1900(config-if)#int e0/3 uniti_1900(config-if)#vlan-membership static 3 uniti_1900(config-if)# uniti_1900 #sh vlan VLAN Name Status Ports default Enabled 1, 4-12, AUI, A, B 2 sales Enabled 2 3 marketing Enabled fddi-default Suspended [output cut] 1900 Series (2)

uniti_1900 (config)#int f0/26 uniti_1900 (config-if)#trunk ? auto Set DISL state to AUTO desirable Set DISL state to DESIRABLE nonegotiate Set DISL state to NONEGOTIATE off Set DISL state to OFF on Set DISL state to ON uniti_1900 (config-if)#trunk on uniti_1900 (config-if)# uniti_1900 #sh trunk ? A Trunk A B Trunk B uniti_1900 #sh trunk a DISL state: On, Trunking: Off, Encapsulation type: Unknown uniti_1900 #sh trunk b DISL state: Off, Trunking: Off, Encapsulation type: Unknown uniti_1900 # 1900 Series (3)

uniti_1900(config)#vtp ? client VTP client domain Set VTP domain name password Set VTP password pruning VTP pruning server VTP server transparent VTP transparent trap VTP trap uniti_1900(config)#vtp server uniti_1900(config)#vtp domain uniti uniti_1900(config)#vtp password cisco uniti_1900(config)# 1900 Series (4)

uniti_1900 #sh vtp VTP version: 1 Configuration revision: 4 Maximum VLANs supported locally: 1005 Number of existing VLANs: 7 VTP domain name : uniti VTP password : cisco VTP operating mode : Server VTP pruning mode : Disabled VTP traps generation : Enabled Configuration last modified by: at :00:00 uniti_1900 # 1900 Series (5)

2950 Series (1) uniti_2950#vlan database uniti_2950(vlan)#vlan 1 name sales A default VLAN may not have its name changed. uniti_2950(vlan)#vlan 2 name marketing VLAN 2 added: Name: marketing uniti_2950(vlan)#vlan 3 name accounting VLAN 3 added: Name: accounting uniti_2950(vlan)#apply APPLY completed. uniti_2950(vlan)#

2950 Series (2) uniti_2950#sh vlan brief VLAN Name Status Ports default active Fa0/1, Fa0/2, Fa0/3, Fa0/4 …, Fa0/22, Fa0/23, Fa0/24 2 marketing active 3 accounting active 10 vlan10 active 20 vlan20 active 30 vlan30 active 1002 fddi-default act/unsup 1003 token-ring-default act/unsup 1004 fddinet-default act/unsup 1005 trnet-default act/unsup

2950 Series (3) uniti_2950#conf t Enter configuration commands, one per line. End with CNTL/Z. uniti_2950(config)#int f0/2 uniti_2950(config-if)#switchport access vlan 2 uniti_2950(config-if)#int f0/3 uniti_2950(config-if)#switchport access vlan 3 uniti_2950(config-if)#^Z

2950 Series (4) uniti_2950#sh vlan brief VLAN Name Status Ports default active Fa0/1, Fa0/4, Fa0/5, Fa0/6 …, Fa0/23, Fa0/24 2 marketing active Fa0/2 3 accounting active Fa0/3 10 vlan10 active 20 vlan20 active 30 vlan30 active 1002 fddi-default act/unsup 1003 token-ring-default act/unsup 1004 fddinet-default act/unsup 1005 trnet-default act/unsup

2950 Series (5) uniti_2950(config)#int f0/24 uniti_2950(config-if)#switchport mode trunk uniti_2950#sh run [output cut] ! interface FastEthernet0/2 switchport access vlan 2 no ip address … interface FastEthernet0/24 switchport mode trunk no ip address ! [output cut]

2950 Series (6) uniti_2950(config)#vtp mode ? client Set the device to client mode. server Set the device to server mode. transparent Set the device to transparent mode. uniti_2950(config)#vtp mode server Device mode already VTP SERVER. uniti_2950(config)#vtp domain uniti Changing VTP domain name from NULL to uniti uniti_2950(config)#vtp password cisco Setting device VLAN database password to cisco uniti_2950#sh vtp ? counters VTP statistics password VTP password status VTP domain status

2950 Series (7) uniti_2950#sh vtp status VTP Version : 2 Configuration Revision : 2 Maximum VLANs supported locally : 64 Number of existing VLANs : 10 VTP Operating Mode : Server VTP Domain Name : uniti VTP Pruning Mode : Disabled VTP V2 Mode : Disabled VTP Traps Generation : Disabled MD5 digest : 0x80 0x44 0xF2 0x33 0x2B 0x87 0x56 0x80 Configuration last modified by at :10:15 Local updater ID is (no valid interface found) uniti_2950#

router(config)#int f0/0.1 router(config-subif)#ip address router(config-subif)#encapsulation dot1q vlan# router(config)#int f0/0 router(config-if)#no ip address router(config-if)#no shut router(config-if)#int f0/0.1 router(config-subif)#ip address router(config-subif)#encapsulation isl 1 router(config)#int f0/0.2 router(config-subif)#ip address router(config-subif)#encapsulation isl 2 Inter-VLAN Routing

Summary VLANs enable logical (instead of physical) groups of users on a switch VLANs address the needs for mobility and flexibility VLANs reduce administrative overhead, improve security, and provide more efficient bandwidth utilization

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.