802.
NOTICE Enterasys Networks reserves the right to make changes in specifications and other information contained in this document and its web site without prior notice. The reader should in all cases consult Enterasys Networks to determine whether any such changes have been made. The hardware, firmware, or software described in this document is subject to change without notice.
Contents Figures ............................................................................................................................................ v Tables..............................................................................................................................................vi PREFACE Using This Guide............................................................................................................vii Structure of This Guide ........................................
3.5 3.6 3.7 3.8 3.9 3.10 4 4.1 4.2 4.3 4.4 iv Contents 3.4.1 Defining a VLAN ........................................................................... 3-10 3.4.2 Changing the VLAN to FID Association ........................................ 3-11 3.4.3 Renaming a VLAN ........................................................................ 3-11 3.4.4 Deleting a VLAN ........................................................................... 3-12 3.4.5 Enabling VLANs..............................
Figures Figure 1-1 2-1 3-1 3-2 3-3 3-4 3-5 3-6 3-7 3-8 3-9 3-10 3-11 3-12 3-13 3-14 3-15 4-1 4-2 4-3 4-4 4-5 4-6 4-7 4-8 4-9 4-10 4-11 Page Example of a VLAN ......................................................................................................... 1-2 Inside the Switch ............................................................................................................. 2-3 Switch Management with Only Default VLAN .................................................................
Tables Table 3-1 3-2 3-3 3-4 3-5 3-6 3-7 vi Page 802.1Q VLAN Configuration Menu Screen Menu Items ...............................................3-6 Device VLAN Configuration Screen Field Definitions ...................................................3-9 Port Assignment Configuration Screen Field Definitions ............................................3-15 Port Filtering Configuration Screen Field Definitions ..................................................
Preface Welcome to the Enterasys Networks 802.1Q VLAN User’s Guide. This guide introduces and describes Enterasys Networks’ implementation of the IEEE 802.1Q standard for 802.1Q Virtual Local Area Network (VLAN) technology, and the VLAN Local Management screens used to configure Enterasys Networks products used in 802.1Q VLAN environments. IMPORTANT NOTICE Information in this guide refers to firmware version 3.x and 4.x only. It does not refer to firmware version 5.x.
Related Documents Chapter 3, VLAN Configuration, describes how to set up the switch for local and remote management, shows the Local Management screens used in 802.1Q VLAN configuration and explains their use. Chapter 4, Examples, offers examples of 802.1Q VLANs and explains how network transmissions are treated by the components of each VLAN.
1 Virtual Local Area Networks This chapter introduces the concepts of Virtual Local Area Networks (VLANs) and discusses the central concepts of IEEE 802.1Q VLANs. This chapter also contains information on how to contact Enterasys Networks for additional support related to VLANs. 1.1 DEFINING VLANs A Virtual Local Area Network is a group of devices that function as a single Local Area Network segment (broadcast domain).
Types of VLANs Building One S S F Building Two S S F A F 1 10 9 trunk SmartSwitch S S Member of Sales Network 8 7 6 S F B SmartSwitch F Member of Finance Network 2263-01 Figure 1-1 Example of a VLAN In this example, the Sales and Finance workstations have been placed on two separate VLANs. In a plain Ethernet environment, the entire network is a broadcast domain, and the SmartSwitches follow the IEEE 802.1D bridging specification to send data between stations.
Benefits and Restrictions 1.2.1 802.1Q VLANs An 802.1Q VLAN switch determines the VLAN membership of a data frame by its Tag Header, described later in this chapter. If the frame received is not tagged, the switch classifies the frame into the VLAN that is assigned as the default VLAN of the switch. Some or all ports on the switch may be configured to operate as GARP VLAN Registration Protocol (GVRP) ports.
VLAN Terms 1.4 VLAN TERMS To fully understand the operation and configuration of port based VLANs, it is essential to understand the definitions of several key terms. VLAN ID A unique number (between 1 and 4094) that identifies a particular VLAN. VLAN Name A 32-character alphanumeric name associated with a VLAN ID. The VLAN Name is intended to make user-defined VLANs easier to identify and remember.
VLAN Terms Port VLAN List A per port list of all eligible VLANs whose frames can be forwarded out one specific port and the frame format (tagged or untagged) of transmissions for that port. The Port VLAN List specifies what VLANs are associated with a single port for frame transmission purposes. Filtering Database A database structure within the switch that keeps track of the associations between MAC addresses, VLANs, and interface (port) numbers.
Getting Help 1.5 GETTING HELP For additional support related to this document, contact Enterasys Networks using one of the following methods: World Wide Web http://www.enterasys.com Phone (603) 332-9400 Internet mail support@enterasys.com FTP ftp://ftp.enterasys.com Login anonymous Password your email address To send comments or suggestions concerning this document, contact the Technical Writing Department via the following email address: TechWriting@enterasys.
2 VLAN Operation This chapter describes the operation of a VLAN switch and discusses the operations that a VLAN switch performs in response to both normal and VLAN-originated network traffic. 2.1 DESCRIPTION The 802.1Q VLAN operation is slightly different than the operation of traditional switched networking systems. These differences are due to the importance of keeping track of each frame and its VLAN association as it passes from switch to switch or from port to port within a switch. 2.
Configuration Process 2.3 CONFIGURATION PROCESS Before a VLAN can operate, steps must be performed to configure the switch to establish and configure a VLAN. Enterasys Networks VLAN aware SmartSwitches default to operate in the 802.1Q VLAN mode. However, further configuration is necessary to establish multiple logical networks. NOTE: The actual steps involved in VLAN configuration using Local Management are presented in Chapter 3, VLAN Configuration.
VLAN Switch Operation 2.4 VLAN SWITCH OPERATION IEEE 802.1Q VLAN switches act on the classification of frames into VLANs. Sometimes, VLAN classification is based on tags in the headers of data frames. These VLAN tags are added to data frames by the switch as the frames are transmitted out certain ports, and are later used to make forwarding decisions by the switch and other VLAN aware switches.
VLAN Switch Operation 2.4.1 Receiving Frames from VLAN Ports When a switch is placed in 802.1Q Operational Mode, every frame received by the switch must belong, or be assigned, to a VLAN. Untagged Frames The switch receives a frame from Port 1 and examines the frame. The switch notices that this frame does not currently have a VLAN tag. The switch recognizes that Port 1 is a member of VLAN A and classifies the frame as such.
GARP Switch Operation 2.4.2.2 Known Unicasts When a VLAN switch receives a frame with a known MAC address as its destination address, the action taken by the switch to determine how the frame is transmitted depends on the VLAN, the VLAN associated FID, and if the port identified to send the frame is enabled to do so. When a frame is received it is classified into a VLAN. The destination address is looked up in the FID associated with the VLAN.
3 VLAN Configuration This chapter describes how to set up the switch for local or remote management, and the VLAN Local Management screens used to create and configure VLANs in a SmartSwitch. 3.1 MANAGING THE SWITCH The switch may be managed locally via a terminal connected to the COM port, or remotely (SNMP or Telnet sessions) from a management station connected to a switch port that is a member of the same VLAN as the switch’s Host Data Port. (By default, this is the default VLAN.
Managing the Switch Figure 3-1 Switch Management with Only Default VLAN 802.1Q Switch 1 2 3 Host Data Port 4 5 6 NOTE: All ports, including the virtual Host Data Port, are members of the default VLAN. Therefore, any station shown may be used as the management station. 2599_14 3.1.2 Switch with VLANs If the switch is to be configured for multiple VLANs, it may be desirable to configure a management-only VLAN.
Managing the Switch Figure 3-2 Switch Management with VLANs Management VLAN VLAN A VLAN A 802.1Q Switch 1 2 3 4 Host Data Port 7 5 6 Set as an 802.1Q Trunk port. VLAN B VLAN B VLAN C 25992_15 To set up the switch shown in Figure 3-2 to establish a management VLAN on port 1, use the process described below: 1. Use the Device VLAN Configuration screen for the following: a. Define a new VLAN named “Management VLAN” (or other suitable name) and its VLAN ID.
Summary of VLAN Local Management This process would be repeated on every switch that is connected in the network to ensure that each switch has a secure Management VLAN for switch management. If the switch was connected to another switch via port 7, which was set as a 1Q Trunk port, then the management station connected to the Management VLAN port of either switch could manage both switches. NOTE: The management stations at each switch must be on the same Management VLAN.
802.1Q VLAN Configuration Menu Screen Preparing for VLAN Configuration A little forethought and planning is essential to a good VLAN implementation. Before attempting to configure a single switch for VLAN operation, consider the following: • How many VLANs will be required • What stations will belong to them • What ports are connected to those stations • What ports will be configured as GARP-aware ports It may also be helpful to sketch out a diagram of your VLAN strategy.
802.1Q VLAN Configuration Menu Screen How to Access Use the arrow keys to highlight the 802.1Q VLAN CONFIGURATION MENU item from the module, device, or chassis specific Configuration Menu screen and press ENTER. The 802.1Q VLAN Configuration Menu screen displays. Screen Example Figure 3-4 802.1Q VLAN Configuration Menu Screen 6C105 LOCAL MANAGEMENT 802.1Q VLAN Configuration Menu Module Type: xxxxx-xx Slot Number: xx Firmware Revision: XX.XX.XX BOOTPROM Revision: XX.XX.
Device VLAN Configuration Screen Table 3-1 802.1Q VLAN Configuration Menu Screen Menu Items (Continued) Menu Item Screen Function PORT ASSIGNMENT CONFIGURATION Displays a list of ports and enables the user to assign a Port VLAN ID (PVID) to each port. The screen also allows the user to change the operational mode of a port. Refer to Section 3.5 for additional information.
Device VLAN Configuration Screen Screen Example Figure 3-5 Device VLAN Configuration Screen 6C105 LOCAL MANAGEMENT Device VLAN Configuration Module Type: xxxxx-xx Firmware Revision: Slot Number: xx BOOTPROM Revision: XX.XX.XX XX.XX.
Device VLAN Configuration Screen Field Definitions Table 3-2 Device VLAN Configuration Screen Field Definitions Use this field … To … Forward Default VLAN Out All Ports (Toggle) Assign or remove the default VLAN from the Port VLAN List for all ports. When set to YES, the default VLAN is added to the Port VLAN List of all ports that do not already include it. When set to NO, the default VLAN is removed from the Port VLAN List of any port that does not have the default VLAN as its PVID.
Device VLAN Configuration Screen Table 3-2 Device VLAN Configuration Screen Field Definitions (Continued) (Continued) Use this field … To … VLAN ID - lower part of screen (Modifiable) Enter input to select or define a new VLAN ID. FID - lower part of screen (Modifiable) Display the FID currently associated with the VLAN typed in the VLAN ID field. A new number can be typed into the FID field to reassign the VLAN to a different filtering database.
Device VLAN Configuration Screen 6. Type a name of up to 32 ASCII characters in the VLAN Name field. This is an optional attribute of a VLAN, and is not required for VLAN operation. 7. Use the arrow keys to highlight the ADD/DEL field. 8. Press the SPACE bar to select ADD for a defined VLAN. Press ENTER. The new VLAN will be added to the VLAN list. The message “VLAN ADDED” displays in the Event Message Line in the upper left-hand corner of the screen.
Device VLAN Configuration Screen 4. Use the arrow keys to highlight the SAVE command at the bottom of the screen. Press ENTER. The message “SAVED OK” displays. 3.4.4 Deleting a VLAN To delete a VLAN from the current VLAN list, proceed as follows: 1. Enter the VLAN ID. The VLAN Name field will automatically update to display the VLAN’s name if that VLAN has been previously configured. 2. Use the arrow keys to highlight the ADD/DEL field. 3. Press the SPACE bar to select DEL. Press ENTER.
Device VLAN Configuration Screen 3. Use the arrow keys to highlight the SAVE command at the bottom of the screen. 4. Press ENTER. The message “SAVED OK” displays. NOTE: The default VLAN cannot be disabled. 3.4.7 Changing the Forwarding Mode To change the forwarding mode of the switch, proceed as follows: 1. Use the arrow keys to highlight the Forward Default VLAN Out All Ports field. 2. Press the SPACE bar or BACKSPACE to toggle between YES and NO.
Port Assignment Configuration Screen 3.5 PORT ASSIGNMENT CONFIGURATION SCREEN When to Use To select a mode of operation for each port and to assign a Port VLAN Identification (PVID) to each port. How to Access Use the arrow keys to highlight the PORT ASSIGNMENT CONFIGURATION menu item on the 802.1Q VLAN Configuration Menu screen and press ENTER. The Port Assignment Configuration screen displays.
Port Assignment Configuration Screen Field Definitions Table 3-3 Port Assignment Configuration Screen Field Definitions Use this field … To … Port (Read-Only) See the port numbers of the interfaces of the current module. Port Mode (Selectable) Display the current operational mode for the corresponding port and select one of three modes: HYBRID, 1Q TRUNK, or ID TRUNK. The default is HYBRID.
Port Assignment Configuration Screen • 1D TRUNK – This mode sets the port for transmitting to a legacy 802.1D switch fabric. In this mode, all incoming frames are classified into the default VLAN and all frames are transmitted untagged. The switch expects to receive only untagged frames through the 1D Trunk port. This mode also updates the Port VLAN List and makes the port eligible to transmit frames for all VLANs.
Port Filtering Configuration Screen 3.5.3 Paging Through the Port List To display additional ports that do not display in the current screen, use the NEXT or PREVIOUS commands at the bottom of the screen, as follows: NOTE: The NEXT and PREVIOUS fields will only display if there are further Port List entries to page through. 1. To display the next screen, use the arrow keys to highlight NEXT. Press ENTER to view the entries on the next screen. 2.
Port Filtering Configuration Screen Screen Example Figure 3-7 Port Filtering Configuration Screen 6C105 LOCAL MANAGEMENT Port Filtering Configuration Module Type: xxxxx-xx Firmware Revision: Slot Number: xx BOOTPROM Revision: XX.XX.XX XX.XX.
Port Filtering Configuration Screen Table 3-4 Port Filtering Configuration Screen Field Definitions (Continued) Use this field … To … Filter Using VLAN Lists (Toggle) Filter out (drop) frames that are classified, via their VLAN tag, as belonging to a VLAN that is not on the Port VLAN List and prevent them from being forwarded by the switch. This field toggles between YES and NO. YES enables filtering according to the Port VLAN List. NO allows the switch to forward the frames. The default is NO.
VLAN Forwarding Configuration Screen 3.6.2 Selecting the Type of Filtering for a Port A port can be set to filter out received frames according to its Port VLAN List. This keeps them from being transmitted and drops all untagged frames from being transmitted. To set this type of filtering, proceed as follows: 1. Use the arrow keys to highlight the Port # field. 2. Use the SPACE bar or BACKSPACE key to step through the available port selections. 3.
VLAN Forwarding Configuration Screen Screen Example Figure 3-8 VLAN Forwarding Configuration Screen 6C105 LOCAL MANAGEMENT VLAN Forwarding Configuration Module Type: xxxxx-xx Firmware Revision: Slot Number: xx BOOTPROM Revision: XX.XX.XX XX.XX.
VLAN Forwarding Configuration Screen Table 3-5 VLAN Forwarding Configuration Screen Field Definitions (Continued) Use this field … To … VLAN Name (Read-Only) See the name associated with the VLAN ID. ADD/DELETE (Toggle) Swap the action taken to add or delete a port from the VLAN Forwarding List. Port (Selectable) Select the port number of the interface being configured. The MIB2 interface description of the port appears to the right of the Port field.
VLAN Forwarding Configuration Screen 2. Use the arrow keys to highlight the Port field. Step through the available ports on the module with the SPACE bar or BACKSPACE. 3. Use the arrow keys to highlight the ADD/DELETE field. Press the SPACE bar to select ADD or DELETE. Press ENTER. The Forwarding List entry will be added to the list of current VLANs once the configuration is saved. 4. Use the arrow keys to highlight the SAVE command at the bottom of the screen. 5. Press ENTER.
Protocol VLAN Configuration Screen 3.8 PROTOCOL VLAN CONFIGURATION SCREEN When to Use To assign a protocol to a VLAN ID on one or more ports on the switch. This enables the switch to add a particular VLAN identifier with the specified protocol to each frame that arrives on a configured port.þ Other switches receiving the frame will classify the frame according to the VLAN identifier within the frame. Entries may also be deleted or modified.
Protocol VLAN Configuration Screen Field Definitions Table 3-6 Protocol VLAN Configuration Screen Field Definitions Use this field … To … VLAN ID - upper part of screen (Selectable) Display the VLAN IDs currently configured and may be selected after the screen is saved to call up the Protocol Ports Configuration screen using the ENTER key. Protocol Type - upper part of screen (Selectable) Display the protocol type associated with the VLAN ID in the VLAN ID column.
Protocol VLAN Configuration Screen Table 3-6 Protocol VLAN Configuration Screen Field Definitions (Continued) Use this field … To … Protocol Type (Selectable) Select one of the following protocol types: IP – pertains to all IP associated Ether Types (i.e., 0x0x0800, 0x0806, and, 0x8035). IPX – pertains to all IPX associated Ether Types (i.e., 0x8137, 0x8138, and special cases, 0x0100 [LLC Type 1 Encapsulation] and 0x0101 [LLC Type 2 Encapsulation]).
Protocol VLAN Configuration Screen Table 3-6 Protocol VLAN Configuration Screen Field Definitions (Continued) Use this field … To … Ether type (Modifiable) Enter the values of a new Ether type when CUSTOM is selected in the Protocol Type field.The value 0x0 will display, which can be modified. A protocol may have more that one Ether Type. Any Ether Type greater than 05dc (hex) and less than ffff (hex) may be entered.þ The maximum number of Ether Types configured per switch is 32.
Protocol VLAN Configuration Screen 2. Enter the VLAN ID. If a new VLAN ID is entered that has not been created on the switch, use a unique number between 2 and 4094. The VLAN IDs of 0, 1, and 4095 may not be used for user-defined VLANs. A FID will automatically be assigned to the new VLAN ID. The FID assigned will have the same value. If an illegal number is entered, the Event Message Line will display: ”PERMISSIBLE RANGE FOR VLAN IDS: 2 to 4094” and the field will refresh with the previous value.
Protocol Ports Configuration Screen 11. Press ENTER and the new settings are displayed under the VLAN ID, Protocol Type, and Configured Ports values. 12. Use the arrow keys to highlight the SAVE command at the bottom of the screen. 13. Press ENTER. The message “SAVED OK” displays and the settings are saved. A particular line of data displayed may now be highlighted to display the Protocol Ports Configuration screen, as described in Section 3.8.
Protocol Ports Configuration Screen Screen Example Figure 3-10 Protocol Ports Configuration Screen 6C105 LOCAL MANAGEMENT Protocol Ports Configuration Firmware Revision: Module Type: xxxxx-xx Slot Number: xx Current Protocol Ports Port Type 15 30 VLAN ID : 1 Protocol: 0X800 Port: [ 31] ATM PVC VCI-1 VPI-23 SAVE XX.XX.XX BOOTPROM Revision: XX.XX.
Protocol Ports Configuration Screen Table 3-7 Protocol Ports Configuration Screen Field Definitions (Continued) Use this field … To … Port (Selectable)þ Step through the ports to select a port to add of deleted from the VLAN ID shown in the VLAN ID field. When a port is displayed the associated port type is displayed to the right of the port number. In Figure 3-10, the port is 31 and the associated port type is, ATM PVC VCI-1 VPI-23.
Quick VLAN Walkthrough 3.10 QUICK VLAN WALKTHROUGH The procedures below provide a short tutorial walkthrough that presents each of the steps necessary to configure a new VLAN, assign a port to it, and check the Port VLAN List of the port. You may wish to follow this walkthrough from start to finish before attempting to configure your own VLANs. This walkthrough begins at the 802.1Q VLAN Configuration Menu screen for a 6C105 chassis.
Quick VLAN Walkthrough Figure 3-11 Walkthrough Stage One 6C105 LOCAL MANAGEMENT Device/VLAN Configuration Module Type: xxxxx-xx Firmware Revision: Slot Number: xx BOOTPROM Revision: XX.XX.XX XX.XX.XX Forward Default VLAN Out All Ports: [NO] VLAN ID 2 FID 1 2 VLAN ID: 1 FID: 2 1 Admin Status VLAN Name DEFAULT VLAN TEST VLAN [Enabled] [Disabled] VLAN Name: TEST VLAN SAVE [ADD] EXIT RETURN 25993-09 It is now time to assign a port to this new VLAN. 9.
Quick VLAN Walkthrough 11. Use the SPACE bar to step sequentially through the previously configured VLAN ID numbers. When the number 0002 (the new VLAN ID) is displayed, the FID field updates to 0002, and the VLAN Name field updates showing the name assigned to this VLAN, TEST VLAN. 12. Use the arrow keys to highlight the SAVE command at the bottom of the screen. Press ENTER. The PVID for Port 3 is now configured to the TEST VLAN.
Quick VLAN Walkthrough 13. Use the arrow keys to highlight the Port Mode field for port 10. Use the SPACE bar or BACKSPACE key to step sequentially through the possible settings of the port until 1Q TRUNK is displayed. 14. Use the arrow keys to highlight the SAVE command at the bottom of the screen. Press ENTER. Port 10 is now acting as a 1Q Trunk port and every VLAN is in its Port VLAN List. The frame format for every VLAN is also set to tagged. The screen should now look like Figure 3-13.
Quick VLAN Walkthrough Figure 3-14 Walkthrough Stage Four 6C105 LOCAL MANAGEMENT Device/VLAN Configuration Module Type: xxxxx-xx Firmware Revision: Slot Number: xx BOOTPROM Revision: XX.XX.XX XX.XX.XX Forward Default VLAN Out All Ports: [NO] VLAN ID 2 FID 1 2 VLAN Name DEFAULT VLAN TEST VLAN VLAN ID: 1 FID: 2 VLAN Name: DEFAULT VLAN 1 SAVE Admin Status [Enabled] [Enabled] [ADD] EXIT RETURN 25993-12 16. Use the arrow keys to highlight the Admin Status field of VLAN ID 2, the TEST VLAN.
Quick VLAN Walkthrough 20. On the 802.1Q VLAN Main Menu screen, use the arrow keys to highlight the PORT FILTERING CONFIGURATION menu item. Press ENTER. The Port Filtering Configuration screen displays. 21. Use the arrow keys to highlight the Port field. 22. Press the SPACE bar to step the field to display 2. 23. Use the arrow keys to highlight the Filter All Untagged Frames field. 24. Press the SPACE bar to toggle the field to display YES. 25.
4 Examples This chapter provides examples of how VLAN aware SmartSwitches can be configured to group users at the port level to create VLANs in existing networks. Each example presents a problem and shows how it is solved by configuring the switches using the VLAN Local Management screens. The actual procedures and screens used to configure a VLAN aware switch are covered in Chapter 3, VLAN Configuration.
Example 1, Single Switch Operation 4.1.1 Solving the Problem To set up this switch, users will be assigned to two new VLANs, red stations to the Red VLAN, and blue stations to the Blue VLAN. The information below describes how the switch is configured to create these two VLANs and how users are assigned to them. 1. First, the switch is set for 802.1Q operation.
Example 2, VLANs Across Multiple Switches 4.1.2 Frame Handling This section describes the operations of the switch when two frames are received. The first frame is a broadcast sent by station R1. 1. Station R1 transmits the broadcast frame. The switch receives this frame on Port 1. As the frame is received, the switch classifies it. The frame is untagged, so the switch classifies it as belonging to the VLAN that Port 1 is assigned to, the Red VLAN. 2.
Example 2, VLANs Across Multiple Switches Figure 4-3 Example 2, VLANs Across Multiple Switches Redco Blue Industries User A 2 Bridge 1 Red VLAN 1 4 Bridge 2 3 Blue VLAN 4 Floor 4 Floor 3 Redco Blue Industries File Server 2 Bridge 3 Blue VLAN 1 2 Bridge 4 File Server 3 Red VLAN Floor 2 Floor 1 User 802.1D Legacy Bridge 802.1Q VLAN Aware Switch File Server 22632_13 4.2.
Example 2, VLANs Across Multiple Switches Switch 4 Switch 4 is set as follows: 1. Two VLANs are added to the list of VLANs in the Device/VLAN Configuration screen and assigned to a FID. In this example they are as follows: • VLAN ID 2, FID 2, with a VLAN Name of Red • VLAN ID 3, FID 3, with a VLAN Name of Blue Because the VLANs are assigned to two separate FIDs, the users on VLAN ID 2 and VLAN ID 3 cannot communicate with each other. 2.
Example 2, VLANs Across Multiple Switches 2. A Port VLAN ID is assigned to each port (1 and 3) as follows using the Port Assignment screen: • Port 1, VLAN ID: 223 for the Blue VLAN • Port 3, VLAN ID: 222 for the Red VLAN These settings change the configuration of the switch, so that Port 1 is part of Blue VLAN, Port 3 is part of Red VLAN, and both are set as frame type of untagged. 3.
Example 2, VLANs Across Multiple Switches 2. Switch 4 receives the frame from Bridge 1 and immediately classifies it as belonging to the Red VLAN. After the frame is classified, Switch 4 checks the Destination Address and, upon discovering that it is a Broadcast Destination Address, forwards the frame out all ports in the Red VLAN Forwarding List excluding Port 1, which received the frame. In this example, it is only Port 4.
Example 3, 1D Trunk Connection to 802.1Q VLAN Network 3. When Switch 2 receives the tagged frame on its Port 2, it checks the frame’s VLAN Tag Header and determines that the frame is classified as belonging to the Red VLAN, and that the frame is a broadcast frame. Switch 2 forwards the frame to all ports in the Red VLAN Forwarding List excluding Port 2, which received the frame. In this example, the only eligible port is Port 3, which connects to Bridge 4.
Example 3, 1D Trunk Connection to 802.1Q VLAN Network In this example, a merger has taken place between the companies in the previous example, Redco and Blue Industries. The two companies have become divisions within a single corporation, Green Incorporated. As illustrated in Figure 4-7, a third group of stations, the Green Incorporated staff, is added to the facility. Also, the Green Incorporated Network Administrators want to add a Mail Server to the network on the first floor.
Example 3, 1D Trunk Connection to 802.1Q VLAN Network The Green Incorporated Network Administrators want to continue to separate normal network traffic between the Blue and Red VLANs, and create a new isolated VLAN for Green, Incorporated users. All divisions in the facility are to have equal access to the Mail Server on the first floor. 4.3.1 Solving the Problem Much of the existing network configuration can remain as it was for Example 2, VLANs Across Multiple Switches.
Example 3, 1D Trunk Connection to 802.1Q VLAN Network 3. A Port VLAN ID is assigned to Port 1 using the Port Assignment screen, as follows: • Port 1, VLAN ID: 224 for the Green VLAN This setting changes the configuration of the switch, so that Port 1 is part of the Green VLAN and is set to transmit a frame type of untagged. 4. The port mode of Ports 2 and 3 are set using the Port Assignment screen: • Port 2, Port Mode: 1Q Trunk • Port 3, Port Mode: 1D Trunk Port 2 is set as an 802.
Example 3, 1D Trunk Connection to 802.1Q VLAN Network Figure 4-8 Bridge 1 Broadcasts Frames User B 2 Bridge 1 Red VLAN 1 4 Bridge 2 3 Blue VLAN 4 Floor 4 2263_18 3. Switch 2 receives the tagged Red VLAN frame on Port 2, as shown in Figure 4-9. The VLAN Tag in the frame is maintained, classifying the frame as belonging to the Red VLAN. The switch forwards the broadcast frame out all the eligible ports, Ports 3 and 4.
Example 3, 1D Trunk Connection to 802.1Q VLAN Network Figure 4-10 Switch 1 Forwards to 1D Trunk Floor 2 Green, Inc. 2 Green VLAN 1 1 Mail Server 3 4 Floor 1 2263_20 5. The Mail Server receives the broadcast frame and recognizes it. The Mail Server responds with a unicast frame to User B. This frame crosses the 1D Trunk and is received by Switch 1. Switch 1 classifies the unicast frame as belonging to the Default VLAN (the only membership for the 1D Trunk port).
Example 4, Isolating Network Traffic According to Protocol 8. Bridge 1 receives the frame and recognizes User B’s MAC address. The frame is forwarded to the correct port and the bridge’s Source Address Table is updated with an entry for the Mail Server’s MAC address. User B receives the Mail Server’s response. Any further unicast traffic between the Mail Server and User B will be handled in the same fashion by the switches in the network. 4.
Example 4, Isolating Network Traffic According to Protocol Figure 4-11 Example 4, Isolating Traffic According to Protocol User B 2 Bridge 1 Red VLAN 1 4 Bridge 2 3 Blue VLAN 4 Floor 4 Publications 2 2 1 3 3 1 Yellow VLAN 5 8 4 3 4 Grey VLAN Printer 5 6 7 Floor 3 2 Bridge 3 1 Blue VLAN 2 Bridge 4 File Server 3 Red VLAN 4 Floor 2 Green, Inc. 2 1 Green VLAN 1 Mail Server 3 Floor 1 User 802.1D Legacy Bridge 802.1Q VLAN-Aware Switch Server 2599_18 4.4.
Example 4, Isolating Network Traffic According to Protocol Two 1Q Trunk ports must be activated and configured on Switch 3, and one 1Q Trunk port must be activated and configured on Switch 4. Ports 2, 3, 4, 5, 6, 7, and 8 of Switch 5 are connected to the Publication Department devices. These ports will be configured to classify all AppleTalk frames into the AppleTalk VLAN (Grey). The same ports will also be configured to classify all other protocol frames into a second VLAN (Yellow).
Example 4, Isolating Network Traffic According to Protocol 3.
Example 4, Isolating Network Traffic According to Protocol 6. Use the VLAN Forwarding Configuration screen to assign Port 1 to the Yellow VLAN and set the frame type to tagged. With this configuration, the frames transmitted on Port 1 are tagged as being from the Yellow VLAN.
Index Numerics 1D Trunk 1-5, 3-16, 4-8 1Q Trunk 1-5, 3-15, 4-3 C Chapters organization vii Configuration 2-2 Conventions viii Forwarding list 1-4 adding entries 3-22 customizing 2-2 deleting entries 3-23 viewing 3-22 Forwarding mode changing 3-13 Frame format changing 3-23 Frames tagged 1-4, 2-4 untagged 1-4, 2-4 D Default VLAN 1-4 Device VLAN Configuration screen ADD/DEL (Toggle) 3-10 Admin Status (Toggle) 3-9 FID - lower part of screen (Modifiable) 3-10 FID - upper part of screen (Read-Only) 3-9 VLAN
N Configured Ports 3-25 Configured Ports BitMap - upper part of screen (Selectable) 3-25 Ether type (Modifiable) 3-27 Feature Status 3-26 Ports - upper part of screen (Read-Only) 3-25 Protocol Type (Selectable) 3-26 VLAN ID - (Modifiable) 3-25 VLAN ID - upper part of screen (ReadOnly) 3-25 Network Traffic isolating 4-14 O Organization of chapters vii Other manuals viii P Port Assignment Configuration screen FID (Read-Only) 3-15 Port Mode (Selectable) 3-15 VLAN ID (Selectable) 3-15 VLAN Name (Read-Only)
configuration 2-2 default VLAN 1-4 defining 2-2 definition 1-1 to 1-3 operation 2-3 terms 1-4 types 1-2 VLAN Configuration deleting 3-12 disabling 3-12 enabling 3-12 VLAN Forwarding Configuration screen ADD/DELETE (Toggle) 3-22 Current VLAN Ports (Read-Only) 3-21 Frame Format - upper part of screen (ReadOnly) 3-21 Frame Type- lower part of screen (Toggle) 3-22 Port (Selectable) 3-22 Port Type (Read-Only) 3-21 VLAN ID (Selectable) 3-21 VLAN Name (Read-Only) 3-22 VLAN ID 1-4 assigning 3-16 VLAN Local Manageme
