SlideShare a Scribd company logo

CCNA R&S-10-Implementing Ethernet Virtual LANs

Download as PPTX, PDF
Amir Jafari
Amir Jafari

This document discusses Ethernet virtual LANs (VLANs). It begins by explaining that VLANs allow a switch to separate interfaces into different broadcast domains, even though they are connected to the same physical switch. It then covers VLAN configuration, including creating VLANs, assigning access ports, and VLAN trunking protocols. It describes how VLAN trunking allows multiple VLANs to cross a single link between switches using tagging. Finally, it discusses routing between VLANs using routers or layer 3 switches.

Technology
1 of 60
©2015 Amir Jafari – www.amir-Jafari.com Routing and Switching 200-120 10 - Implementing Ethernet Virtual LANs
Implementing Ethernet Virtual LANs ©2015 Amir Jafari – www.amir-Jafari.com Agenda  Virtual LAN Concepts  VLAN and VLAN Trunking Configuration and Verification
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com Virtual LAN Concepts  A LAN includes all devices in the same broadcast domain  Without VLANs, a switch considers all its interfaces to be in the same broadcast domain Creating Two Broadcast Domains with Two Physical Switches and No VLANs
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com Virtual LAN Concepts  With VLANs, a switch can configure some interfaces into one broadcast domain and some into another, creating multiple broadcast domains  These individual broadcast domains created by the switch are called virtual LANs (VLAN) Creating Two Broadcast Domains Using One Switch and VLANs
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com Virtual LAN Concepts Most common reasons for choosing to create smaller broadcast domains (VLANs):  To reduce CPU overhead on each device by reducing the number of devices that receive each broadcast frame  To reduce security risks by reducing the number of hosts that receive copies of frames that the switches flood (broadcasts, multicasts, and unknown unicasts)  To improve security for hosts that send sensitive data by keeping those hosts on a separate VLAN  To create more flexible designs that group users by department, or by groups that work together, instead of by physical location  To solve problems more quickly, because the failure domain for many problems is the same set of devices as those in the same broadcast domain  To reduce the workload for the Spanning Tree Protocol (STP) by limiting a VLAN to a single access switch
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com Creating Multiswitch VLANs Using Trunking  When using VLANs in networks that have multiple interconnected switches, the switches need to use VLAN trunking on the links between the switches.  VLAN trunking causes the switches to use a process called VLAN tagging, by which the sending switch adds another header to the frame before sending it over the trunk.  This extra trunking header includes a VLAN identifier (VLAN ID) field so that the sending switch can associate the frame with a particular VLAN ID, and the receiving switch can then know in what VLAN each frame belongs
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com Creating Multiswitch VLANs Using Trunking Multiswitch VLAN Without VLAN Trunking  Each switch has two ports assigned to each VLAN, so each VLAN exists in both switches
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com VLAN Tagging Concepts  VLAN trunking creates one link between switches that supports as many VLANs as you need.  As a VLAN trunk, the switches treat the link as if it were a part of all the VLANs.  At the same time, the trunk keeps the VLAN traffic separate, because each frame is identified by VLAN number as it crosses the trunk
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com VLAN Tagging Concepts  The use of trunking allows switches to pass frames from multiple VLANs over a single physical connection by adding a small header to the Ethernet frame Multiswitch VLAN with Trunking
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com VLAN Tagging Concepts VLAN Trunking Between Two Switches When SW2 receives the frame, it understands that the frame is in VLAN 10. SW2 then removes the VLAN header, forwarding the original frame out its interfaces in VLAN 10
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com The 802.1Q and ISL VLAN Trunking Protocols  Cisco has supported two different trunking protocols over the years:  Inter-Switch Link (ISL)  IEEE 802.1Q  Cisco created the ISL long before 802.1Q, in part because the IEEE had not yet defined a VLAN trunking standard  Today, 802.1Q has become the more popular trunking protocol, with Cisco not even supporting ISL in some of its newer models of LAN switches  While both ISL and 802.1Q tag each frame with the VLAN ID, the details differ
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com The 802.1Q and ISL VLAN Trunking Protocols ISL  Because ISL is Cisco proprietary, it can be used only between two Cisco switches that support ISL  ISL fully encapsulates each original Ethernet frame in an ISL header and trailer  The original Ethernet frame inside the ISL header and trailer remains unchanged  By tagging a frame with the correct VLAN number inside the header, the sending switch can ensure that the receiving switch knows to which VLAN the encapsulated frame belongs
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com The 802.1Q and ISL VLAN Trunking Protocols  Also, the source and destination addresses in the ISL header use MAC addresses of the sending and receiving switch, as opposed to the devices that actually sent the original frame. ISL Header
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com The 802.1Q and ISL VLAN Trunking Protocols IEEE 802.1Q  802.1Q inserts an extra 4-byte 802.1Q VLAN header into the original frame’s Ethernet header  As for the fields in the 802.1Q header, only the 12-bit VLAN ID field inside the 802.1Q Header  This 12-bit field supports a theoretical maximum of 212 (4096) VLANs, while in practice, it supports a maximum of 4094. (Both 802.1Q and ISL use 12 bits to tag the VLAN ID, with two reserved values [0 and 4095]) 802.1Q Trunking
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com The 802.1Q and ISL VLAN Trunking Protocols  Cisco switches break the range of VLAN IDs (1–4094) into two ranges: 1. The normal range 2. The extended range  All switches can use normal-range VLANs with values from 1 to 1005  Only some switches can use extended-range VLANs with VLAN IDs from 1005 to 4094  The rules for which switches can use extended-range VLANs depend on the configuration of the VLAN Trunking Protocol (VTP)
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com The 802.1Q and ISL VLAN Trunking Protocols  802.1Q also defines one special VLAN ID on each trunk as the native VLAN (defaulting to use VLAN 1)  By definition, 802.1Q simply does not add an 802.1Q header to frames in the native VLAN  When the switch on the other side of the trunk receives a frame that does not have an 802.1Q header, the receiving switch knows that the frame is part of the native VLAN  Note that because of this behavior, both switches must agree on which VLAN is the native VLAN  Only one such native VLAN is allowed on any one trunk; otherwise, that VLAN associated with untagged frames could not be discerned by the receiving switch
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com The 802.1Q and ISL VLAN Trunking Protocols  The 802.1Q native VLAN provides some interesting functions, mainly to support connections to devices that do not understand trunking  For example, a Cisco switch could be cabled to a switch that does not understand 802.1Q trunking. The Cisco switch could send frames in the native VLAN— meaning that the frame has no trunking header—so that the other switch would understand the frame  The native VLAN concept gives switches the capability of at least passing traffic in one VLAN (the native VLAN), which can allow some basic functions, like reachability to telnet into a switch
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com The 802.1Q and ISL VLAN Trunking Protocols ISL and 802.1Q Compared
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com Routing Packets Between VLANs with a Router  When including VLANs in a campus LAN design, the devices in a VLAN need to be in the same subnet. So, devices in different VLANs need to be in different subnets  Layer 2 switches will not forward data between two VLANs  In fact, one goal of VLANs is to separate traffic in one VLAN from another, preventing frames in one VLAN from leaking over to other VLANs Routing Between VLANs on Two Physically Separated Switches
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com Routing Packets Between VLANs with a Router  The job of forwarding data into and out of a VLAN falls to routers  Instead of switching Layer 2 Ethernet frames between the two VLANs, the network must route Layer 3 packets between the two subnets  Now Router R1 has one LAN physical interface connected to the switch and assigned to VLAN 10, and a second physical interface connected to the switch and assigned to VLAN 20. Routing Between Two VLANs on Two Physical Interfaces
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com Routing Packets Between VLANs with a Router  While the design in previous figure works, it uses too many physical interfaces, one per VLAN  A much less expensive (and much preferred) option uses a VLAN trunk between the switch and router, requiring only one physical link between the router and switch, while supporting all VLANs  Trunking can work between any two devices that choose to support it:  between two switches  between a router and a switch  between server hardware and a switch
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com Routing Packets Between VLANs with a Router  Because the router has a single physical link connected to the LAN switch, this design is sometimes called a router-on-a-stick Routing Between Two VLANs Using a Trunk on the Router
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com Routing Packets with a Layer 3 Switch  Routing packets using a physical router, even with the VLAN trunk in the router-on-a-stick, still has one significant problem: performance  The physical link puts an upper limit on how many bits can be routed, and less expensive routers tend to be less powerful, and might not be able to route a large enough number of packets per second (pps) to keep up with the traffic volumes  The ultimate solution moves the routing functions inside the LAN switch hardware  Vendors long ago started combining the hardware and software features of their Layer 2 LAN switches, plus their Layer 3 routers, creating products called Layer 3 switches (also known as multilayer switches)
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com Routing Packets with a Layer 3 Switch  Layer 3 switches can be configured to act only as a Layer 2 switch, or they can be configured to do both Layer 2 switching as well as Layer 3 routing  In concept, a Layer 3 switch works a lot like the original two devices on which the Layer 3 switch is based: a Layer 2 LAN switch and a Layer 3 router
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com Routing Packets with a Layer 3 Switch Multilayer Switch: Layer 2 Switching with Layer 3 Routing in One Device
VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com Creating VLANs and Assigning Access VLANs to an Interface  For a Cisco switch to forward frames in a particular VLAN: 1. The switch must be configured to believe that the VLAN exists 2. Additionally, the switch must have nontrunking interfaces assigned to the VLAN, and/or trunks that support the VLAN  Nontrunking interfaces called access interfaces  The configuration steps for access interfaces are as follows:
VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com Creating VLANs and Assigning Access VLANs to an Interface The configuration steps for access interfaces are as follows: Step 1. configure a new VLAN: A. From configuration mode, use the vlan vlan-id global configuration command to create the VLAN and to move the user into VLAN configuration mode B. (Optional) Use the name name VLAN subcommand to list a name for the VLAN. If not configured, the VLAN name is VLANZZZZ, where ZZZZ is the 4- digit decimal VLAN ID. Step 2. For each access interface belongs to a single VLAN: A. Use the interface command to move into interface configuration mode for each desired interface. B. Use the switchport access vlan id-number interface subcommand to specify the VLAN number associated with that interface C. (Optional) To disable trunking on that same interface, so that the interface does not negotiate to become a trunk, use the switchport mode access
VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Configuration Example 1: Full VLAN Configuration Network with One Switch and Three VLANs
VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Configuration Example 1: Full VLAN Configuration  VLAN 1 cannot be deleted, but can be used  VLANs 1002–1005 cannot be deleted and cannot be used as access VLANs today
VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Configuration Example 1: Full VLAN Configuration  For ports that should always act as access ports, add the optional interface subcommand switchport mode access  This command tells the switch to only allow the interface to be an access interface
VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Configuration Example 1: Full VLAN Configuration
VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Configuration Example 1: Full VLAN Configuration
VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Configuration Example 1: Full VLAN Configuration
VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Configuration Example 2: Shorter VLAN Configuration  shows how a switch can dynamically create a VLAN—the equivalent of the vlan vlanid global config command—when the switchport access vlan interface subcommand refers to acurrently unconfigured VLAN
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Protocol (VTP)  The Cisco-proprietary VLAN Trunking Protocol (VTP) provides a means by which Cisco switches can exchange VLAN configuration information  VTP advertises about the existence of each VLAN based on its VLAN ID and the VLAN name  However, VTP does not advertise the details about which switch interfaces are assigned to each VLAN  VTP defines a Layer 2 messaging protocol that the switches use to exchange VLAN configuration information.  When a switch changes its VLAN, VTP causes all the switches to synchronize their VLAN configuration to include the same VLAN IDs and VLAN names
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Protocol (VTP)  Each switch sending periodic VTP messages  Switches also send VTP messages as soon as their VLAN configuration changes. The switch would immediately send VTP updates out all trunks, causing the distribution of the new VLAN information to the rest of the switches  Each switch uses one of three VTP modes: 1. Server mode 2. Client mode 3. Transparent mode  To use VTP, an engineer sets some switches to use server mode and the rest to use client mode
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Protocol (VTP)  VLAN configuration can be added on the servers, with all other servers and clients learning about the changes to the VLAN database  Clients cannot be used to configure VLAN information  Transparent mode causes a switch to ignore VTP, other than to forward VTP messages so that any other clients or servers can receive a copy  Switches use either VTP server or client mode when the switch wants to use VTP for its intended purpose of dynamically advertising VLAN configuration information
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Protocol (VTP)  check the VTP status with the show vtp status command.  If your switch uses VTP server or client mode, you will find:  The server switches can configure VLANs in the standard range only (1– 1005).  The client switches cannot configure VLANs.  The show running-config command does not list any vlan commands
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com Avoiding VTP by Using VTP Transparent Mode  Switches cannot simply disable VTP. Instead, switches must use the third VTP mode: VTP transparent mode (with the vtp mode transparent global command) or to disable it (with the vtp mode off global command)  Like VTP servers, VTP transparent mode switches can configure VLANs  However, unlike servers, transparent mode switches never update their VLAN databases based on incoming VTP messages, and transparent mode switches never try to create VTP messages to tell other switches about their own VLAN configuration  Transparent mode switches forward VTP updates received from other switches, just to help out any neighboring VTP server or client switches  Because of the dangers associated with VTP some engineers just avoid VTP altogether by using VTP transparent mode on all switches
Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com Storing VLAN Configuration  Cisco IOS stores the information in the VLAN database differently than for most other Cisco IOS configuration commands  When VTP clients and servers store VLAN , the configuration is stored in a file called vlan.dat in flash memory. Cisco IOS does not put this VLAN configuration in the running-config file or the startup-config file  Switches in transparent mode store VLAN configuration in both the running- config file as well as the vlan.dat file in flash. The running-config can be saved to the startup-config as well  If you want to remove all the configuration to start with a clean switch, you must issue more than the erase startup-config command. you would have to delete the vlan.dat file in flash with a command delete flash:vlan.dat
VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Configuration  You could literally add one interface subcommand for the switch interface on each side of the link (switchport mode trunk), and you would create a VLAN trunk that supported all the VLANs known to each switch  Trunking configuration on Cisco switches including options for dynamically negotiating various trunking settings.  The configuration can either predefine different settings or tell the switch to negotiate the settings, as follows:  The type of trunking: IEEE 802.1Q, ISL, or negotiate which one to use  The administrative mode: Whether to always trunk, always not trunk, or negotiate
VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Configuration  Cisco switches that support ISL and 802.1Q can negotiate which type to use, using the Dynamic Trunking Protocol (DTP):  If both switches support both protocols, they use ISL; otherwise, they use the protocol that both support  Today, many Cisco switches do not support the older ISL trunking protocol  Switches that support both types of trunking use the switchport trunk encapsulation {dot1q | isl | negotiate} interface subcommand to either configure the type or allow DTP to negotiate the type
VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Configuration  DTP can also negotiate whether the two devices on the link agree to trunk at all, as guided by the local switch port’s administrative mode  The administrative mode refers to the configuration setting for whether trunking should be used.  Each interface also has an operational mode, which refers to what is currently happening on the interface, and might have been chosen by DTP’s negotiation with the other device.  Cisco switches use the switchport mode interface subcommand to define the administrative trunking mode
VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Configuration Trunking Administrative Mode Options with the switchport mode Command
VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Configuration Network with Two Switches and Three VLANs  The trunk does not dynamically form by default, because both switches default to an administrative mode of dynamic auto  By changing one switch to use dynamic desirable mode, the switches negotiate to use trunking
VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Configuration  The output lists the default administrative mode setting of dynamic auto. the command lists SW1’s operational status as access  On a switch that supports both ISL and 802.1Q, this value would by default list “negotiate,” to mean that the type of encapsulation is negotiated  The output of the show interfaces trunk command, will be with no output
VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Configuration
VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Configuration
VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Configuration
VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Configuration
VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Configuration  Cisco recommends disabling trunk negotiation on most ports for better security  You can disable DTP negotiations altogether using the switchport nonegotiate interface subcommand Expected Trunking Operational Mode Based on the Configured Administrative Modes
VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com Controlling Which VLANs Can Be Supported on a Trunk  The allowed VLAN list feature provides a mechanism for engineers to administratively disable a VLAN from a trunk  By default, switches include all possible VLANs (1–4094) in each trunk’s allowed VLAN list  Engineers can then limit the VLANs allowed on the trunk by using the following interface subcommand: switchport trunk allowed vlan {add | all | except | remove} vlan-list  The add option permits the switch to add VLANs to the existing allowed VLAN list  the remove option permits the switch to remove VLANs from the existing list  The all option means all VLANs, so you can use it to reset the switch to its original default setting (permitting VLANs 1–4094 on the trunk).
VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com Controlling Which VLANs Can Be Supported on a Trunk A switch some reasons to prevent a particular VLAN’s traffic from crossing a trunk:  A VLAN has been removed from the trunk’s allowed VLAN list  A VLAN does not exist in the switch’s configuration: if the switch does not have a vlan vlan-id command configured, the switch will not forward frames in that VLAN over any interface  A VLAN does exist, but has been administratively disabled (shutdown): a VLAN can exist in a switch’s configuration, but also be administratively shut down either by using the shutdown vlan vlan-id global configuration command, or using the shutdown command in VLAN configuration mode.  A VLAN has been automatically pruned by VTP  A VLAN’s STP instance has placed the trunk interface into a blocking state
VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com Controlling Which VLANs Can Be Supported on a Trunk  The show interfaces trunk command lists VLAN ID ranges as well, based on these same reasons  This command includes a progression of three lists of the VLANs supported over a trunk. These three lists are as follows: 1. VLANs allowed on the trunk, 1–4094 by default 2. VLANs from the first group that are also configured and active (not shut down) 3. VLANs from the second group that are not VTP pruned and not STP blocked
VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com Controlling Which VLANs Can Be Supported on a Trunk VLANs 1 through 3 exist in SW1’s configuration, and are not shut down
VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com Controlling Which VLANs Can Be Supported on a Trunk Step 1. VLAN 4 is configured. Step 2. VLAN 2 is shut down. Step 3. VLAN 3 is removed from the trunk’allowed VLAN list.
VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com Controlling Which VLANs Can Be Supported on a Trunk
Implementing Ethernet Virtual LANs ©2015 Amir Jafari – www.amir-Jafari.com Command References
Implementing Ethernet Virtual LANs ©2015 Amir Jafari – www.amir-Jafari.com Command References
Implementing Ethernet Virtual LANs ©2015 Amir Jafari – www.amir-Jafari.com References 1) Cisco Systems, Inc, www.cisco.com/ 2) Wendell Odom ,”Cisco CCENT/CCNA ICND1 100-101 Official Cert Guide”, Cisco Press, USA, 2013

Recommended

CCCNA R&S-04-Fundamentals of WANs
CCCNA R&S-04-Fundamentals of WANsCCCNA R&S-04-Fundamentals of WANs
CCCNA R&S-04-Fundamentals of WANs
Amir Jafari
 
CCNA R&S-13-Spanning Tree Protocol Implementation
CCNA R&S-13-Spanning Tree Protocol ImplementationCCNA R&S-13-Spanning Tree Protocol Implementation
CCNA R&S-13-Spanning Tree Protocol Implementation
Amir Jafari
 
CCNA R&S-11-Troubleshooting Ethernet LANs
CCNA R&S-11-Troubleshooting Ethernet LANsCCNA R&S-11-Troubleshooting Ethernet LANs
CCNA R&S-11-Troubleshooting Ethernet LANs
Amir Jafari
 
CCCNA R&S-03-Fundamentals of Ethernet LANs
CCCNA R&S-03-Fundamentals of Ethernet LANsCCCNA R&S-03-Fundamentals of Ethernet LANs
CCCNA R&S-03-Fundamentals of Ethernet LANs
Amir Jafari
 
CCNA R&S-20-Configuring IPv4 Addresses and Routes
CCNA R&S-20-Configuring IPv4 Addresses and RoutesCCNA R&S-20-Configuring IPv4 Addresses and Routes
CCNA R&S-20-Configuring IPv4 Addresses and Routes
Amir Jafari
 
CCNA Lab 3-VLAN Configuration on Switch
CCNA Lab 3-VLAN Configuration on SwitchCCNA Lab 3-VLAN Configuration on Switch
CCNA Lab 3-VLAN Configuration on Switch
Amir Jafari
 
CCNA R&S-19-Operating Cisco Routers
CCNA R&S-19-Operating Cisco RoutersCCNA R&S-19-Operating Cisco Routers
CCNA R&S-19-Operating Cisco Routers
Amir Jafari
 
CCNA R&S-12-Spanning Tree Protocol Concepts
CCNA R&S-12-Spanning Tree Protocol ConceptsCCNA R&S-12-Spanning Tree Protocol Concepts
CCNA R&S-12-Spanning Tree Protocol Concepts
Amir Jafari
 

Recommended

CCCNA R&S-04-Fundamentals of WANs
CCCNA R&S-04-Fundamentals of WANsCCCNA R&S-04-Fundamentals of WANs
CCCNA R&S-04-Fundamentals of WANs
Amir Jafari
 
CCNA R&S-13-Spanning Tree Protocol Implementation
CCNA R&S-13-Spanning Tree Protocol ImplementationCCNA R&S-13-Spanning Tree Protocol Implementation
CCNA R&S-13-Spanning Tree Protocol Implementation
Amir Jafari
 
CCNA R&S-11-Troubleshooting Ethernet LANs
CCNA R&S-11-Troubleshooting Ethernet LANsCCNA R&S-11-Troubleshooting Ethernet LANs
CCNA R&S-11-Troubleshooting Ethernet LANs
Amir Jafari
 
CCCNA R&S-03-Fundamentals of Ethernet LANs
CCCNA R&S-03-Fundamentals of Ethernet LANsCCCNA R&S-03-Fundamentals of Ethernet LANs
CCCNA R&S-03-Fundamentals of Ethernet LANs
Amir Jafari
 
CCNA R&S-20-Configuring IPv4 Addresses and Routes
CCNA R&S-20-Configuring IPv4 Addresses and RoutesCCNA R&S-20-Configuring IPv4 Addresses and Routes
CCNA R&S-20-Configuring IPv4 Addresses and Routes
Amir Jafari
 
CCNA Lab 3-VLAN Configuration on Switch
CCNA Lab 3-VLAN Configuration on SwitchCCNA Lab 3-VLAN Configuration on Switch
CCNA Lab 3-VLAN Configuration on Switch
Amir Jafari
 
CCNA R&S-19-Operating Cisco Routers
CCNA R&S-19-Operating Cisco RoutersCCNA R&S-19-Operating Cisco Routers
CCNA R&S-19-Operating Cisco Routers
Amir Jafari
 
CCNA R&S-12-Spanning Tree Protocol Concepts
CCNA R&S-12-Spanning Tree Protocol ConceptsCCNA R&S-12-Spanning Tree Protocol Concepts
CCNA R&S-12-Spanning Tree Protocol Concepts
Amir Jafari
 
CCNA Lab 5-Configuring Inter-VLAN Routing
CCNA Lab 5-Configuring Inter-VLAN RoutingCCNA Lab 5-Configuring Inter-VLAN Routing
CCNA Lab 5-Configuring Inter-VLAN Routing
Amir Jafari
 
CCNA R&S-09-Configuring Ethernet Switching
CCNA R&S-09-Configuring Ethernet SwitchingCCNA R&S-09-Configuring Ethernet Switching
CCNA R&S-09-Configuring Ethernet Switching
Amir Jafari
 
Performance evaluation-of-ieee-802.11p-for-vehicular-communication-networks
Performance evaluation-of-ieee-802.11p-for-vehicular-communication-networksPerformance evaluation-of-ieee-802.11p-for-vehicular-communication-networks
Performance evaluation-of-ieee-802.11p-for-vehicular-communication-networksAmir Jafari
 
CCNA R&S-01-Introduction to Cisco Certified Network Associate
CCNA R&S-01-Introduction to Cisco Certified Network AssociateCCNA R&S-01-Introduction to Cisco Certified Network Associate
CCNA R&S-01-Introduction to Cisco Certified Network Associate
Amir Jafari
 
CCNA Lab 4-Configuring EtherChannels and optimizing Spanning Tree Protocol on...
CCNA Lab 4-Configuring EtherChannels and optimizing Spanning Tree Protocol on...CCNA Lab 4-Configuring EtherChannels and optimizing Spanning Tree Protocol on...
CCNA Lab 4-Configuring EtherChannels and optimizing Spanning Tree Protocol on...
Amir Jafari
 
CCNA R&S-06-Fundamentals of TCP-IP Transport and Applications
CCNA R&S-06-Fundamentals of TCP-IP Transport and ApplicationsCCNA R&S-06-Fundamentals of TCP-IP Transport and Applications
CCNA R&S-06-Fundamentals of TCP-IP Transport and Applications
Amir Jafari
 
CCNA Lab 1-Configuring a Switch Part I
CCNA Lab 1-Configuring a Switch Part ICCNA Lab 1-Configuring a Switch Part I
CCNA Lab 1-Configuring a Switch Part I
Amir Jafari
 
Ccna3 mod9-vtp
Ccna3 mod9-vtpCcna3 mod9-vtp
Ccna3 mod9-vtpMilton Bengui
 
Chapter 16 : inter-vlan routing
Chapter 16 : inter-vlan routingChapter 16 : inter-vlan routing
Chapter 16 : inter-vlan routing
teknetir
 
Vlans
VlansVlans
Vlans1 2d
 
CCNA R&S-18-Analyzing Existing Subnets
CCNA R&S-18-Analyzing Existing SubnetsCCNA R&S-18-Analyzing Existing Subnets
CCNA R&S-18-Analyzing Existing Subnets
Amir Jafari
 
Expl sw chapter_06_inter_vlan
Expl sw chapter_06_inter_vlanExpl sw chapter_06_inter_vlan
Expl sw chapter_06_inter_vlanaghacrom
 
CCNA Advanced Switching
CCNA Advanced SwitchingCCNA Advanced Switching
CCNA Advanced SwitchingDsunte Wilson
 
Chapter 3 vlans
Chapter 3 vlansChapter 3 vlans
Chapter 3 vlanskratos2424
 
CCNP Switching Chapter 3
CCNP Switching Chapter 3CCNP Switching Chapter 3
CCNP Switching Chapter 3
Chaing Ravuth
 
CCNA2 Verson6 Chapter6
CCNA2 Verson6 Chapter6CCNA2 Verson6 Chapter6
CCNA2 Verson6 Chapter6
Chaing Ravuth
 
CCNA Advanced Routing Protocols
CCNA Advanced Routing ProtocolsCCNA Advanced Routing Protocols
CCNA Advanced Routing ProtocolsDsunte Wilson
 
CCNP Switching Chapter 5
CCNP Switching Chapter 5CCNP Switching Chapter 5
CCNP Switching Chapter 5
Chaing Ravuth
 
CCNA Exam 200-120 pdf
CCNA Exam 200-120 pdfCCNA Exam 200-120 pdf
CCNA Exam 200-120 pdf
Madhan Banda
 
Lab 6.4.1 InterVLAN routing
Lab 6.4.1 InterVLAN routingLab 6.4.1 InterVLAN routing
Lab 6.4.1 InterVLAN routing
Muhd Mu'izuddin
 
VLANs_Module_3.pptx
VLANs_Module_3.pptxVLANs_Module_3.pptx
VLANs_Module_3.pptx
BOURY1
 
Chapter 8 .vlan.pdf
Chapter 8 .vlan.pdfChapter 8 .vlan.pdf
Chapter 8 .vlan.pdf
manojkumar595505
 

More Related Content

What's hot

CCNA Lab 5-Configuring Inter-VLAN Routing
CCNA Lab 5-Configuring Inter-VLAN RoutingCCNA Lab 5-Configuring Inter-VLAN Routing
CCNA Lab 5-Configuring Inter-VLAN Routing
Amir Jafari
 
CCNA R&S-09-Configuring Ethernet Switching
CCNA R&S-09-Configuring Ethernet SwitchingCCNA R&S-09-Configuring Ethernet Switching
CCNA R&S-09-Configuring Ethernet Switching
Amir Jafari
 
Performance evaluation-of-ieee-802.11p-for-vehicular-communication-networks
Performance evaluation-of-ieee-802.11p-for-vehicular-communication-networksPerformance evaluation-of-ieee-802.11p-for-vehicular-communication-networks
Performance evaluation-of-ieee-802.11p-for-vehicular-communication-networksAmir Jafari
 
CCNA R&S-01-Introduction to Cisco Certified Network Associate
CCNA R&S-01-Introduction to Cisco Certified Network AssociateCCNA R&S-01-Introduction to Cisco Certified Network Associate
CCNA R&S-01-Introduction to Cisco Certified Network Associate
Amir Jafari
 
CCNA Lab 4-Configuring EtherChannels and optimizing Spanning Tree Protocol on...
CCNA Lab 4-Configuring EtherChannels and optimizing Spanning Tree Protocol on...CCNA Lab 4-Configuring EtherChannels and optimizing Spanning Tree Protocol on...
CCNA Lab 4-Configuring EtherChannels and optimizing Spanning Tree Protocol on...
Amir Jafari
 
CCNA R&S-06-Fundamentals of TCP-IP Transport and Applications
CCNA R&S-06-Fundamentals of TCP-IP Transport and ApplicationsCCNA R&S-06-Fundamentals of TCP-IP Transport and Applications
CCNA R&S-06-Fundamentals of TCP-IP Transport and Applications
Amir Jafari
 
CCNA Lab 1-Configuring a Switch Part I
CCNA Lab 1-Configuring a Switch Part ICCNA Lab 1-Configuring a Switch Part I
CCNA Lab 1-Configuring a Switch Part I
Amir Jafari
 
Chapter 16 : inter-vlan routing
Chapter 16 : inter-vlan routingChapter 16 : inter-vlan routing
Chapter 16 : inter-vlan routing
teknetir
 
Vlans
VlansVlans
Vlans1 2d
 
CCNA R&S-18-Analyzing Existing Subnets
CCNA R&S-18-Analyzing Existing SubnetsCCNA R&S-18-Analyzing Existing Subnets
CCNA R&S-18-Analyzing Existing Subnets
Amir Jafari
 
Expl sw chapter_06_inter_vlan
Expl sw chapter_06_inter_vlanExpl sw chapter_06_inter_vlan
Expl sw chapter_06_inter_vlanaghacrom
 
CCNA Advanced Switching
CCNA Advanced SwitchingCCNA Advanced Switching
CCNA Advanced SwitchingDsunte Wilson
 
Chapter 3 vlans
Chapter 3 vlansChapter 3 vlans
Chapter 3 vlanskratos2424
 
CCNP Switching Chapter 3
CCNP Switching Chapter 3CCNP Switching Chapter 3
CCNP Switching Chapter 3
Chaing Ravuth
 
CCNA2 Verson6 Chapter6
CCNA2 Verson6 Chapter6CCNA2 Verson6 Chapter6
CCNA2 Verson6 Chapter6
Chaing Ravuth
 
CCNA Advanced Routing Protocols
CCNA Advanced Routing ProtocolsCCNA Advanced Routing Protocols
CCNA Advanced Routing ProtocolsDsunte Wilson
 
CCNP Switching Chapter 5
CCNP Switching Chapter 5CCNP Switching Chapter 5
CCNP Switching Chapter 5
Chaing Ravuth
 
CCNA Exam 200-120 pdf
CCNA Exam 200-120 pdfCCNA Exam 200-120 pdf
CCNA Exam 200-120 pdf
Madhan Banda
 
Lab 6.4.1 InterVLAN routing
Lab 6.4.1 InterVLAN routingLab 6.4.1 InterVLAN routing
Lab 6.4.1 InterVLAN routing
Muhd Mu'izuddin
 

What's hot (20)

CCNA Lab 5-Configuring Inter-VLAN Routing
CCNA Lab 5-Configuring Inter-VLAN RoutingCCNA Lab 5-Configuring Inter-VLAN Routing
CCNA Lab 5-Configuring Inter-VLAN Routing
 
CCNA R&S-09-Configuring Ethernet Switching
CCNA R&S-09-Configuring Ethernet SwitchingCCNA R&S-09-Configuring Ethernet Switching
CCNA R&S-09-Configuring Ethernet Switching
 
Performance evaluation-of-ieee-802.11p-for-vehicular-communication-networks
Performance evaluation-of-ieee-802.11p-for-vehicular-communication-networksPerformance evaluation-of-ieee-802.11p-for-vehicular-communication-networks
Performance evaluation-of-ieee-802.11p-for-vehicular-communication-networks
 
CCNA R&S-01-Introduction to Cisco Certified Network Associate
CCNA R&S-01-Introduction to Cisco Certified Network AssociateCCNA R&S-01-Introduction to Cisco Certified Network Associate
CCNA R&S-01-Introduction to Cisco Certified Network Associate
 
CCNA Lab 4-Configuring EtherChannels and optimizing Spanning Tree Protocol on...
CCNA Lab 4-Configuring EtherChannels and optimizing Spanning Tree Protocol on...CCNA Lab 4-Configuring EtherChannels and optimizing Spanning Tree Protocol on...
CCNA Lab 4-Configuring EtherChannels and optimizing Spanning Tree Protocol on...
 
CCNA R&S-06-Fundamentals of TCP-IP Transport and Applications
CCNA R&S-06-Fundamentals of TCP-IP Transport and ApplicationsCCNA R&S-06-Fundamentals of TCP-IP Transport and Applications
CCNA R&S-06-Fundamentals of TCP-IP Transport and Applications
 
CCNA Lab 1-Configuring a Switch Part I
CCNA Lab 1-Configuring a Switch Part ICCNA Lab 1-Configuring a Switch Part I
CCNA Lab 1-Configuring a Switch Part I
 
Ccna3 mod9-vtp
Ccna3 mod9-vtpCcna3 mod9-vtp
Ccna3 mod9-vtp
 
Chapter 16 : inter-vlan routing
Chapter 16 : inter-vlan routingChapter 16 : inter-vlan routing
Chapter 16 : inter-vlan routing
 
Vlans
VlansVlans
Vlans
 
CCNA R&S-18-Analyzing Existing Subnets
CCNA R&S-18-Analyzing Existing SubnetsCCNA R&S-18-Analyzing Existing Subnets
CCNA R&S-18-Analyzing Existing Subnets
 
Expl sw chapter_06_inter_vlan
Expl sw chapter_06_inter_vlanExpl sw chapter_06_inter_vlan
Expl sw chapter_06_inter_vlan
 
CCNA Advanced Switching
CCNA Advanced SwitchingCCNA Advanced Switching
CCNA Advanced Switching
 
Chapter 3 vlans
Chapter 3 vlansChapter 3 vlans
Chapter 3 vlans
 
CCNP Switching Chapter 3
CCNP Switching Chapter 3CCNP Switching Chapter 3
CCNP Switching Chapter 3
 
CCNA2 Verson6 Chapter6
CCNA2 Verson6 Chapter6CCNA2 Verson6 Chapter6
CCNA2 Verson6 Chapter6
 
CCNA Advanced Routing Protocols
CCNA Advanced Routing ProtocolsCCNA Advanced Routing Protocols
CCNA Advanced Routing Protocols
 
CCNP Switching Chapter 5
CCNP Switching Chapter 5CCNP Switching Chapter 5
CCNP Switching Chapter 5
 
CCNA Exam 200-120 pdf
CCNA Exam 200-120 pdfCCNA Exam 200-120 pdf
CCNA Exam 200-120 pdf
 
Lab 6.4.1 InterVLAN routing
Lab 6.4.1 InterVLAN routingLab 6.4.1 InterVLAN routing
Lab 6.4.1 InterVLAN routing
 

Similar to CCNA R&S-10-Implementing Ethernet Virtual LANs

VLANs_Module_3.pptx
VLANs_Module_3.pptxVLANs_Module_3.pptx
VLANs_Module_3.pptx
BOURY1
 
Chapter 8 .vlan.pdf
Chapter 8 .vlan.pdfChapter 8 .vlan.pdf
Chapter 8 .vlan.pdf
manojkumar595505
 
VLAN chapters for networking CCNA_RSE_Chp6.pptx
VLAN chapters for networking CCNA_RSE_Chp6.pptxVLAN chapters for networking CCNA_RSE_Chp6.pptx
VLAN chapters for networking CCNA_RSE_Chp6.pptx
muhammadFaheem656405
 
CCNA_RSE_Chp6.pptx
CCNA_RSE_Chp6.pptxCCNA_RSE_Chp6.pptx
CCNA_RSE_Chp6.pptx
santosh Kumar
 
Virtual Local Area Network
Virtual Local Area NetworkVirtual Local Area Network
Virtual Local Area Network
Atakan ATAK
 
Vlan Types
Vlan TypesVlan Types
Vlan Types
IT Tech
 
Lecture_Network Design, InterVlan Routing and Trunking_.pptx
Lecture_Network Design, InterVlan Routing and Trunking_.pptxLecture_Network Design, InterVlan Routing and Trunking_.pptx
Lecture_Network Design, InterVlan Routing and Trunking_.pptx
SaqibAhmedKhan4
 
VLAN
VLANVLAN
VLAN
ISMT College
 
W3-Presentation-VLANs-AMA COMPUTER COLLEGE.pdf
W3-Presentation-VLANs-AMA COMPUTER COLLEGE.pdfW3-Presentation-VLANs-AMA COMPUTER COLLEGE.pdf
W3-Presentation-VLANs-AMA COMPUTER COLLEGE.pdf
gummybear37
 
VLAN Virtual Area Network ,Switch,Ethernet ,VIkram Snehi
VLAN Virtual Area Network ,Switch,Ethernet ,VIkram SnehiVLAN Virtual Area Network ,Switch,Ethernet ,VIkram Snehi
VLAN Virtual Area Network ,Switch,Ethernet ,VIkram Snehi
MR. VIKRAM SNEHI
 
Vlan.pdf
Vlan.pdfVlan.pdf
Vlan.pdf
itwkd
 
CCNA (R & S) Module 03 - Routing & Switching Essentials - Chapter 6
CCNA (R & S) Module 03 - Routing & Switching Essentials - Chapter 6CCNA (R & S) Module 03 - Routing & Switching Essentials - Chapter 6
CCNA (R & S) Module 03 - Routing & Switching Essentials - Chapter 6
Waqas Ahmed Nawaz
 
mod8-VLANs.ppt
mod8-VLANs.pptmod8-VLANs.ppt
mod8-VLANs.ppt
SAROORNAGARCMCORE
 
Vlan
VlanVlan
Vlan
ilias ahmed
 
Virtual local area network
Virtual local area networkVirtual local area network
Virtual local area networkVeena Rao
 
VLAN Trunking Protocol
VLAN Trunking ProtocolVLAN Trunking Protocol
VLAN Trunking Protocol
Netwax Lab
 
Ccna3 mod9-vtp
Ccna3 mod9-vtpCcna3 mod9-vtp
Ccna3 mod9-vtpjmdoger
 

Similar to CCNA R&S-10-Implementing Ethernet Virtual LANs (20)

VLANs_Module_3.pptx
VLANs_Module_3.pptxVLANs_Module_3.pptx
VLANs_Module_3.pptx
 
Chapter 8 .vlan.pdf
Chapter 8 .vlan.pdfChapter 8 .vlan.pdf
Chapter 8 .vlan.pdf
 
VLAN chapters for networking CCNA_RSE_Chp6.pptx
VLAN chapters for networking CCNA_RSE_Chp6.pptxVLAN chapters for networking CCNA_RSE_Chp6.pptx
VLAN chapters for networking CCNA_RSE_Chp6.pptx
 
CCNA_RSE_Chp6.pptx
CCNA_RSE_Chp6.pptxCCNA_RSE_Chp6.pptx
CCNA_RSE_Chp6.pptx
 
Virtual Local Area Network
Virtual Local Area NetworkVirtual Local Area Network
Virtual Local Area Network
 
Vlan
Vlan Vlan
Vlan
 
Vlan Types
Vlan TypesVlan Types
Vlan Types
 
Lecture_Network Design, InterVlan Routing and Trunking_.pptx
Lecture_Network Design, InterVlan Routing and Trunking_.pptxLecture_Network Design, InterVlan Routing and Trunking_.pptx
Lecture_Network Design, InterVlan Routing and Trunking_.pptx
 
VLAN
VLANVLAN
VLAN
 
W3-Presentation-VLANs-AMA COMPUTER COLLEGE.pdf
W3-Presentation-VLANs-AMA COMPUTER COLLEGE.pdfW3-Presentation-VLANs-AMA COMPUTER COLLEGE.pdf
W3-Presentation-VLANs-AMA COMPUTER COLLEGE.pdf
 
Vlan
VlanVlan
Vlan
 
VLAN Virtual Area Network ,Switch,Ethernet ,VIkram Snehi
VLAN Virtual Area Network ,Switch,Ethernet ,VIkram SnehiVLAN Virtual Area Network ,Switch,Ethernet ,VIkram Snehi
VLAN Virtual Area Network ,Switch,Ethernet ,VIkram Snehi
 
Vlan.pdf
Vlan.pdfVlan.pdf
Vlan.pdf
 
CCNA (R & S) Module 03 - Routing & Switching Essentials - Chapter 6
CCNA (R & S) Module 03 - Routing & Switching Essentials - Chapter 6CCNA (R & S) Module 03 - Routing & Switching Essentials - Chapter 6
CCNA (R & S) Module 03 - Routing & Switching Essentials - Chapter 6
 
mod8-VLANs.ppt
mod8-VLANs.pptmod8-VLANs.ppt
mod8-VLANs.ppt
 
Vlan
VlanVlan
Vlan
 
Vlan final
Vlan finalVlan final
Vlan final
 
Virtual local area network
Virtual local area networkVirtual local area network
Virtual local area network
 
VLAN Trunking Protocol
VLAN Trunking ProtocolVLAN Trunking Protocol
VLAN Trunking Protocol
 
Ccna3 mod9-vtp
Ccna3 mod9-vtpCcna3 mod9-vtp
Ccna3 mod9-vtp
 

More from Amir Jafari

Smart powetr grids
Smart powetr gridsSmart powetr grids
Smart powetr grids
Amir Jafari
 
CCNA R&S-17-Analyzing Subnet Masks
CCNA R&S-17-Analyzing Subnet MasksCCNA R&S-17-Analyzing Subnet Masks
CCNA R&S-17-Analyzing Subnet Masks
Amir Jafari
 
CCNA R&S-16-Analyzing Classful IPv4 Networks
CCNA R&S-16-Analyzing Classful IPv4 NetworksCCNA R&S-16-Analyzing Classful IPv4 Networks
CCNA R&S-16-Analyzing Classful IPv4 Networks
Amir Jafari
 
CCNA R&S-15-Perspectives on IPv4 Subnetting
CCNA R&S-15-Perspectives on IPv4 SubnettingCCNA R&S-15-Perspectives on IPv4 Subnetting
CCNA R&S-15-Perspectives on IPv4 Subnetting
Amir Jafari
 
CCNA Lab 2-Configuring a Switch Part II
CCNA Lab 2-Configuring a Switch Part IICCNA Lab 2-Configuring a Switch Part II
CCNA Lab 2-Configuring a Switch Part II
Amir Jafari
 
CCCNA R&S-02-The TCP-IP and OSI Networking Models
CCCNA R&S-02-The TCP-IP and OSI Networking ModelsCCCNA R&S-02-The TCP-IP and OSI Networking Models
CCCNA R&S-02-The TCP-IP and OSI Networking Models
Amir Jafari
 
Network design
Network designNetwork design
Network design
Amir Jafari
 
CCNA Voice 640-461- Part 4 historic voice-digital connectivity-part 2
CCNA Voice 640-461- Part 4 historic voice-digital connectivity-part 2CCNA Voice 640-461- Part 4 historic voice-digital connectivity-part 2
CCNA Voice 640-461- Part 4 historic voice-digital connectivity-part 2
Amir Jafari
 
Performance Evaluation Of IEEE 802.11p For Vehicular Communication Networks
Performance Evaluation Of IEEE 802.11p For Vehicular Communication NetworksPerformance Evaluation Of IEEE 802.11p For Vehicular Communication Networks
Performance Evaluation Of IEEE 802.11p For Vehicular Communication NetworksAmir Jafari
 

More from Amir Jafari (9)

Smart powetr grids
Smart powetr gridsSmart powetr grids
Smart powetr grids
 
CCNA R&S-17-Analyzing Subnet Masks
CCNA R&S-17-Analyzing Subnet MasksCCNA R&S-17-Analyzing Subnet Masks
CCNA R&S-17-Analyzing Subnet Masks
 
CCNA R&S-16-Analyzing Classful IPv4 Networks
CCNA R&S-16-Analyzing Classful IPv4 NetworksCCNA R&S-16-Analyzing Classful IPv4 Networks
CCNA R&S-16-Analyzing Classful IPv4 Networks
 
CCNA R&S-15-Perspectives on IPv4 Subnetting
CCNA R&S-15-Perspectives on IPv4 SubnettingCCNA R&S-15-Perspectives on IPv4 Subnetting
CCNA R&S-15-Perspectives on IPv4 Subnetting
 
CCNA Lab 2-Configuring a Switch Part II
CCNA Lab 2-Configuring a Switch Part IICCNA Lab 2-Configuring a Switch Part II
CCNA Lab 2-Configuring a Switch Part II
 
CCCNA R&S-02-The TCP-IP and OSI Networking Models
CCCNA R&S-02-The TCP-IP and OSI Networking ModelsCCCNA R&S-02-The TCP-IP and OSI Networking Models
CCCNA R&S-02-The TCP-IP and OSI Networking Models
 
Network design
Network designNetwork design
Network design
 
CCNA Voice 640-461- Part 4 historic voice-digital connectivity-part 2
CCNA Voice 640-461- Part 4 historic voice-digital connectivity-part 2CCNA Voice 640-461- Part 4 historic voice-digital connectivity-part 2
CCNA Voice 640-461- Part 4 historic voice-digital connectivity-part 2
 
Performance Evaluation Of IEEE 802.11p For Vehicular Communication Networks
Performance Evaluation Of IEEE 802.11p For Vehicular Communication NetworksPerformance Evaluation Of IEEE 802.11p For Vehicular Communication Networks
Performance Evaluation Of IEEE 802.11p For Vehicular Communication Networks
 

Recently uploaded

Assuring Contact Center Experiences for Your Customers With ThousandEyes
Assuring Contact Center Experiences for Your Customers With ThousandEyesAssuring Contact Center Experiences for Your Customers With ThousandEyes
Assuring Contact Center Experiences for Your Customers With ThousandEyes
ThousandEyes
 
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdfSmart TV Buyer Insights Survey 2024 by 91mobiles.pdf
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf
91mobiles
 
How world-class product teams are winning in the AI era by CEO and Founder, P...
How world-class product teams are winning in the AI era by CEO and Founder, P...How world-class product teams are winning in the AI era by CEO and Founder, P...
How world-class product teams are winning in the AI era by CEO and Founder, P...
Product School
 
Essentials of Automations: Optimizing FME Workflows with Parameters
Essentials of Automations: Optimizing FME Workflows with ParametersEssentials of Automations: Optimizing FME Workflows with Parameters
Essentials of Automations: Optimizing FME Workflows with Parameters
Safe Software
 
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdfFIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance
 
Leading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdfLeading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdf
OnBoard
 
From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...
From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...
From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...
Product School
 
Accelerate your Kubernetes clusters with Varnish Caching
Accelerate your Kubernetes clusters with Varnish CachingAccelerate your Kubernetes clusters with Varnish Caching
Accelerate your Kubernetes clusters with Varnish Caching
Thijs Feryn
 
GraphRAG is All You need? LLM & Knowledge Graph
GraphRAG is All You need? LLM & Knowledge GraphGraphRAG is All You need? LLM & Knowledge Graph
GraphRAG is All You need? LLM & Knowledge Graph
Guy Korland
 
The Art of the Pitch: WordPress Relationships and Sales
The Art of the Pitch: WordPress Relationships and SalesThe Art of the Pitch: WordPress Relationships and Sales
The Art of the Pitch: WordPress Relationships and Sales
Laura Byrne
 
Knowledge engineering: from people to machines and back
Knowledge engineering: from people to machines and backKnowledge engineering: from people to machines and back
Knowledge engineering: from people to machines and back
Elena Simperl
 
UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4
DianaGray10
 
State of ICS and IoT Cyber Threat Landscape Report 2024 preview
State of ICS and IoT Cyber Threat Landscape Report 2024 previewState of ICS and IoT Cyber Threat Landscape Report 2024 preview
State of ICS and IoT Cyber Threat Landscape Report 2024 preview
Prayukth K V
 
Designing Great Products: The Power of Design and Leadership by Chief Designe...
Designing Great Products: The Power of Design and Leadership by Chief Designe...Designing Great Products: The Power of Design and Leadership by Chief Designe...
Designing Great Products: The Power of Design and Leadership by Chief Designe...
Product School
 
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Albert Hoitingh
 
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...
Jeffrey Haguewood
 
Bits & Pixels using AI for Good.........
Bits & Pixels using AI for Good.........Bits & Pixels using AI for Good.........
Bits & Pixels using AI for Good.........
Alison B. Lowndes
 
Monitoring Java Application Security with JDK Tools and JFR Events
Monitoring Java Application Security with JDK Tools and JFR EventsMonitoring Java Application Security with JDK Tools and JFR Events
Monitoring Java Application Security with JDK Tools and JFR Events
Ana-Maria Mihalceanu
 
Epistemic Interaction - tuning interfaces to provide information for AI support
Epistemic Interaction - tuning interfaces to provide information for AI supportEpistemic Interaction - tuning interfaces to provide information for AI support
Epistemic Interaction - tuning interfaces to provide information for AI support
Alan Dix
 
PCI PIN Basics Webinar from the Controlcase Team
PCI PIN Basics Webinar from the Controlcase TeamPCI PIN Basics Webinar from the Controlcase Team
PCI PIN Basics Webinar from the Controlcase Team
ControlCase
 

Recently uploaded (20)

Assuring Contact Center Experiences for Your Customers With ThousandEyes
Assuring Contact Center Experiences for Your Customers With ThousandEyesAssuring Contact Center Experiences for Your Customers With ThousandEyes
Assuring Contact Center Experiences for Your Customers With ThousandEyes
 
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdfSmart TV Buyer Insights Survey 2024 by 91mobiles.pdf
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf
 
How world-class product teams are winning in the AI era by CEO and Founder, P...
How world-class product teams are winning in the AI era by CEO and Founder, P...How world-class product teams are winning in the AI era by CEO and Founder, P...
How world-class product teams are winning in the AI era by CEO and Founder, P...
 
Essentials of Automations: Optimizing FME Workflows with Parameters
Essentials of Automations: Optimizing FME Workflows with ParametersEssentials of Automations: Optimizing FME Workflows with Parameters
Essentials of Automations: Optimizing FME Workflows with Parameters
 
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdfFIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
 
Leading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdfLeading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdf
 
From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...
From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...
From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...
 
Accelerate your Kubernetes clusters with Varnish Caching
Accelerate your Kubernetes clusters with Varnish CachingAccelerate your Kubernetes clusters with Varnish Caching
Accelerate your Kubernetes clusters with Varnish Caching
 
GraphRAG is All You need? LLM & Knowledge Graph
GraphRAG is All You need? LLM & Knowledge GraphGraphRAG is All You need? LLM & Knowledge Graph
GraphRAG is All You need? LLM & Knowledge Graph
 
The Art of the Pitch: WordPress Relationships and Sales
The Art of the Pitch: WordPress Relationships and SalesThe Art of the Pitch: WordPress Relationships and Sales
The Art of the Pitch: WordPress Relationships and Sales
 
Knowledge engineering: from people to machines and back
Knowledge engineering: from people to machines and backKnowledge engineering: from people to machines and back
Knowledge engineering: from people to machines and back
 
UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4
 
State of ICS and IoT Cyber Threat Landscape Report 2024 preview
State of ICS and IoT Cyber Threat Landscape Report 2024 previewState of ICS and IoT Cyber Threat Landscape Report 2024 preview
State of ICS and IoT Cyber Threat Landscape Report 2024 preview
 
Designing Great Products: The Power of Design and Leadership by Chief Designe...
Designing Great Products: The Power of Design and Leadership by Chief Designe...Designing Great Products: The Power of Design and Leadership by Chief Designe...
Designing Great Products: The Power of Design and Leadership by Chief Designe...
 
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
 
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...
 
Bits & Pixels using AI for Good.........
Bits & Pixels using AI for Good.........Bits & Pixels using AI for Good.........
Bits & Pixels using AI for Good.........
 
Monitoring Java Application Security with JDK Tools and JFR Events
Monitoring Java Application Security with JDK Tools and JFR EventsMonitoring Java Application Security with JDK Tools and JFR Events
Monitoring Java Application Security with JDK Tools and JFR Events
 
Epistemic Interaction - tuning interfaces to provide information for AI support
Epistemic Interaction - tuning interfaces to provide information for AI supportEpistemic Interaction - tuning interfaces to provide information for AI support
Epistemic Interaction - tuning interfaces to provide information for AI support
 
PCI PIN Basics Webinar from the Controlcase Team
PCI PIN Basics Webinar from the Controlcase TeamPCI PIN Basics Webinar from the Controlcase Team
PCI PIN Basics Webinar from the Controlcase Team
 

CCNA R&S-10-Implementing Ethernet Virtual LANs

  • 1. ©2015 Amir Jafari – www.amir-Jafari.com Routing and Switching 200-120 10 - Implementing Ethernet Virtual LANs
  • 2. Implementing Ethernet Virtual LANs ©2015 Amir Jafari – www.amir-Jafari.com Agenda  Virtual LAN Concepts  VLAN and VLAN Trunking Configuration and Verification
  • 3. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com Virtual LAN Concepts  A LAN includes all devices in the same broadcast domain  Without VLANs, a switch considers all its interfaces to be in the same broadcast domain Creating Two Broadcast Domains with Two Physical Switches and No VLANs
  • 4. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com Virtual LAN Concepts  With VLANs, a switch can configure some interfaces into one broadcast domain and some into another, creating multiple broadcast domains  These individual broadcast domains created by the switch are called virtual LANs (VLAN) Creating Two Broadcast Domains Using One Switch and VLANs
  • 5. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com Virtual LAN Concepts Most common reasons for choosing to create smaller broadcast domains (VLANs):  To reduce CPU overhead on each device by reducing the number of devices that receive each broadcast frame  To reduce security risks by reducing the number of hosts that receive copies of frames that the switches flood (broadcasts, multicasts, and unknown unicasts)  To improve security for hosts that send sensitive data by keeping those hosts on a separate VLAN  To create more flexible designs that group users by department, or by groups that work together, instead of by physical location  To solve problems more quickly, because the failure domain for many problems is the same set of devices as those in the same broadcast domain  To reduce the workload for the Spanning Tree Protocol (STP) by limiting a VLAN to a single access switch
  • 6. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com Creating Multiswitch VLANs Using Trunking  When using VLANs in networks that have multiple interconnected switches, the switches need to use VLAN trunking on the links between the switches.  VLAN trunking causes the switches to use a process called VLAN tagging, by which the sending switch adds another header to the frame before sending it over the trunk.  This extra trunking header includes a VLAN identifier (VLAN ID) field so that the sending switch can associate the frame with a particular VLAN ID, and the receiving switch can then know in what VLAN each frame belongs
  • 7. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com Creating Multiswitch VLANs Using Trunking Multiswitch VLAN Without VLAN Trunking  Each switch has two ports assigned to each VLAN, so each VLAN exists in both switches
  • 8. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com VLAN Tagging Concepts  VLAN trunking creates one link between switches that supports as many VLANs as you need.  As a VLAN trunk, the switches treat the link as if it were a part of all the VLANs.  At the same time, the trunk keeps the VLAN traffic separate, because each frame is identified by VLAN number as it crosses the trunk
  • 9. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com VLAN Tagging Concepts  The use of trunking allows switches to pass frames from multiple VLANs over a single physical connection by adding a small header to the Ethernet frame Multiswitch VLAN with Trunking
  • 10. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com VLAN Tagging Concepts VLAN Trunking Between Two Switches When SW2 receives the frame, it understands that the frame is in VLAN 10. SW2 then removes the VLAN header, forwarding the original frame out its interfaces in VLAN 10
  • 11. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com The 802.1Q and ISL VLAN Trunking Protocols  Cisco has supported two different trunking protocols over the years:  Inter-Switch Link (ISL)  IEEE 802.1Q  Cisco created the ISL long before 802.1Q, in part because the IEEE had not yet defined a VLAN trunking standard  Today, 802.1Q has become the more popular trunking protocol, with Cisco not even supporting ISL in some of its newer models of LAN switches  While both ISL and 802.1Q tag each frame with the VLAN ID, the details differ
  • 12. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com The 802.1Q and ISL VLAN Trunking Protocols ISL  Because ISL is Cisco proprietary, it can be used only between two Cisco switches that support ISL  ISL fully encapsulates each original Ethernet frame in an ISL header and trailer  The original Ethernet frame inside the ISL header and trailer remains unchanged  By tagging a frame with the correct VLAN number inside the header, the sending switch can ensure that the receiving switch knows to which VLAN the encapsulated frame belongs
  • 13. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com The 802.1Q and ISL VLAN Trunking Protocols  Also, the source and destination addresses in the ISL header use MAC addresses of the sending and receiving switch, as opposed to the devices that actually sent the original frame. ISL Header
  • 14. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com The 802.1Q and ISL VLAN Trunking Protocols IEEE 802.1Q  802.1Q inserts an extra 4-byte 802.1Q VLAN header into the original frame’s Ethernet header  As for the fields in the 802.1Q header, only the 12-bit VLAN ID field inside the 802.1Q Header  This 12-bit field supports a theoretical maximum of 212 (4096) VLANs, while in practice, it supports a maximum of 4094. (Both 802.1Q and ISL use 12 bits to tag the VLAN ID, with two reserved values [0 and 4095]) 802.1Q Trunking
  • 15. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com The 802.1Q and ISL VLAN Trunking Protocols  Cisco switches break the range of VLAN IDs (1–4094) into two ranges: 1. The normal range 2. The extended range  All switches can use normal-range VLANs with values from 1 to 1005  Only some switches can use extended-range VLANs with VLAN IDs from 1005 to 4094  The rules for which switches can use extended-range VLANs depend on the configuration of the VLAN Trunking Protocol (VTP)
  • 16. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com The 802.1Q and ISL VLAN Trunking Protocols  802.1Q also defines one special VLAN ID on each trunk as the native VLAN (defaulting to use VLAN 1)  By definition, 802.1Q simply does not add an 802.1Q header to frames in the native VLAN  When the switch on the other side of the trunk receives a frame that does not have an 802.1Q header, the receiving switch knows that the frame is part of the native VLAN  Note that because of this behavior, both switches must agree on which VLAN is the native VLAN  Only one such native VLAN is allowed on any one trunk; otherwise, that VLAN associated with untagged frames could not be discerned by the receiving switch
  • 17. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com The 802.1Q and ISL VLAN Trunking Protocols  The 802.1Q native VLAN provides some interesting functions, mainly to support connections to devices that do not understand trunking  For example, a Cisco switch could be cabled to a switch that does not understand 802.1Q trunking. The Cisco switch could send frames in the native VLAN— meaning that the frame has no trunking header—so that the other switch would understand the frame  The native VLAN concept gives switches the capability of at least passing traffic in one VLAN (the native VLAN), which can allow some basic functions, like reachability to telnet into a switch
  • 18. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com The 802.1Q and ISL VLAN Trunking Protocols ISL and 802.1Q Compared
  • 19. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com Routing Packets Between VLANs with a Router  When including VLANs in a campus LAN design, the devices in a VLAN need to be in the same subnet. So, devices in different VLANs need to be in different subnets  Layer 2 switches will not forward data between two VLANs  In fact, one goal of VLANs is to separate traffic in one VLAN from another, preventing frames in one VLAN from leaking over to other VLANs Routing Between VLANs on Two Physically Separated Switches
  • 20. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com Routing Packets Between VLANs with a Router  The job of forwarding data into and out of a VLAN falls to routers  Instead of switching Layer 2 Ethernet frames between the two VLANs, the network must route Layer 3 packets between the two subnets  Now Router R1 has one LAN physical interface connected to the switch and assigned to VLAN 10, and a second physical interface connected to the switch and assigned to VLAN 20. Routing Between Two VLANs on Two Physical Interfaces
  • 21. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com Routing Packets Between VLANs with a Router  While the design in previous figure works, it uses too many physical interfaces, one per VLAN  A much less expensive (and much preferred) option uses a VLAN trunk between the switch and router, requiring only one physical link between the router and switch, while supporting all VLANs  Trunking can work between any two devices that choose to support it:  between two switches  between a router and a switch  between server hardware and a switch
  • 22. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com Routing Packets Between VLANs with a Router  Because the router has a single physical link connected to the LAN switch, this design is sometimes called a router-on-a-stick Routing Between Two VLANs Using a Trunk on the Router
  • 23. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com Routing Packets with a Layer 3 Switch  Routing packets using a physical router, even with the VLAN trunk in the router-on-a-stick, still has one significant problem: performance  The physical link puts an upper limit on how many bits can be routed, and less expensive routers tend to be less powerful, and might not be able to route a large enough number of packets per second (pps) to keep up with the traffic volumes  The ultimate solution moves the routing functions inside the LAN switch hardware  Vendors long ago started combining the hardware and software features of their Layer 2 LAN switches, plus their Layer 3 routers, creating products called Layer 3 switches (also known as multilayer switches)
  • 24. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com Routing Packets with a Layer 3 Switch  Layer 3 switches can be configured to act only as a Layer 2 switch, or they can be configured to do both Layer 2 switching as well as Layer 3 routing  In concept, a Layer 3 switch works a lot like the original two devices on which the Layer 3 switch is based: a Layer 2 LAN switch and a Layer 3 router
  • 25. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com Routing Packets with a Layer 3 Switch Multilayer Switch: Layer 2 Switching with Layer 3 Routing in One Device
  • 26. VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com Creating VLANs and Assigning Access VLANs to an Interface  For a Cisco switch to forward frames in a particular VLAN: 1. The switch must be configured to believe that the VLAN exists 2. Additionally, the switch must have nontrunking interfaces assigned to the VLAN, and/or trunks that support the VLAN  Nontrunking interfaces called access interfaces  The configuration steps for access interfaces are as follows:
  • 27. VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com Creating VLANs and Assigning Access VLANs to an Interface The configuration steps for access interfaces are as follows: Step 1. configure a new VLAN: A. From configuration mode, use the vlan vlan-id global configuration command to create the VLAN and to move the user into VLAN configuration mode B. (Optional) Use the name name VLAN subcommand to list a name for the VLAN. If not configured, the VLAN name is VLANZZZZ, where ZZZZ is the 4- digit decimal VLAN ID. Step 2. For each access interface belongs to a single VLAN: A. Use the interface command to move into interface configuration mode for each desired interface. B. Use the switchport access vlan id-number interface subcommand to specify the VLAN number associated with that interface C. (Optional) To disable trunking on that same interface, so that the interface does not negotiate to become a trunk, use the switchport mode access
  • 28. VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Configuration Example 1: Full VLAN Configuration Network with One Switch and Three VLANs
  • 29. VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Configuration Example 1: Full VLAN Configuration  VLAN 1 cannot be deleted, but can be used  VLANs 1002–1005 cannot be deleted and cannot be used as access VLANs today
  • 30. VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Configuration Example 1: Full VLAN Configuration  For ports that should always act as access ports, add the optional interface subcommand switchport mode access  This command tells the switch to only allow the interface to be an access interface
  • 31. VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Configuration Example 1: Full VLAN Configuration
  • 32. VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Configuration Example 1: Full VLAN Configuration
  • 33. VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Configuration Example 1: Full VLAN Configuration
  • 34. VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Configuration Example 2: Shorter VLAN Configuration  shows how a switch can dynamically create a VLAN—the equivalent of the vlan vlanid global config command—when the switchport access vlan interface subcommand refers to acurrently unconfigured VLAN
  • 35. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Protocol (VTP)  The Cisco-proprietary VLAN Trunking Protocol (VTP) provides a means by which Cisco switches can exchange VLAN configuration information  VTP advertises about the existence of each VLAN based on its VLAN ID and the VLAN name  However, VTP does not advertise the details about which switch interfaces are assigned to each VLAN  VTP defines a Layer 2 messaging protocol that the switches use to exchange VLAN configuration information.  When a switch changes its VLAN, VTP causes all the switches to synchronize their VLAN configuration to include the same VLAN IDs and VLAN names
  • 36. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Protocol (VTP)  Each switch sending periodic VTP messages  Switches also send VTP messages as soon as their VLAN configuration changes. The switch would immediately send VTP updates out all trunks, causing the distribution of the new VLAN information to the rest of the switches  Each switch uses one of three VTP modes: 1. Server mode 2. Client mode 3. Transparent mode  To use VTP, an engineer sets some switches to use server mode and the rest to use client mode
  • 37. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Protocol (VTP)  VLAN configuration can be added on the servers, with all other servers and clients learning about the changes to the VLAN database  Clients cannot be used to configure VLAN information  Transparent mode causes a switch to ignore VTP, other than to forward VTP messages so that any other clients or servers can receive a copy  Switches use either VTP server or client mode when the switch wants to use VTP for its intended purpose of dynamically advertising VLAN configuration information
  • 38. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Protocol (VTP)  check the VTP status with the show vtp status command.  If your switch uses VTP server or client mode, you will find:  The server switches can configure VLANs in the standard range only (1– 1005).  The client switches cannot configure VLANs.  The show running-config command does not list any vlan commands
  • 39. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com Avoiding VTP by Using VTP Transparent Mode  Switches cannot simply disable VTP. Instead, switches must use the third VTP mode: VTP transparent mode (with the vtp mode transparent global command) or to disable it (with the vtp mode off global command)  Like VTP servers, VTP transparent mode switches can configure VLANs  However, unlike servers, transparent mode switches never update their VLAN databases based on incoming VTP messages, and transparent mode switches never try to create VTP messages to tell other switches about their own VLAN configuration  Transparent mode switches forward VTP updates received from other switches, just to help out any neighboring VTP server or client switches  Because of the dangers associated with VTP some engineers just avoid VTP altogether by using VTP transparent mode on all switches
  • 40. Virtual LAN Concepts ©2015 Amir Jafari – www.amir-Jafari.com Storing VLAN Configuration  Cisco IOS stores the information in the VLAN database differently than for most other Cisco IOS configuration commands  When VTP clients and servers store VLAN , the configuration is stored in a file called vlan.dat in flash memory. Cisco IOS does not put this VLAN configuration in the running-config file or the startup-config file  Switches in transparent mode store VLAN configuration in both the running- config file as well as the vlan.dat file in flash. The running-config can be saved to the startup-config as well  If you want to remove all the configuration to start with a clean switch, you must issue more than the erase startup-config command. you would have to delete the vlan.dat file in flash with a command delete flash:vlan.dat
  • 41. VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Configuration  You could literally add one interface subcommand for the switch interface on each side of the link (switchport mode trunk), and you would create a VLAN trunk that supported all the VLANs known to each switch  Trunking configuration on Cisco switches including options for dynamically negotiating various trunking settings.  The configuration can either predefine different settings or tell the switch to negotiate the settings, as follows:  The type of trunking: IEEE 802.1Q, ISL, or negotiate which one to use  The administrative mode: Whether to always trunk, always not trunk, or negotiate
  • 42. VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Configuration  Cisco switches that support ISL and 802.1Q can negotiate which type to use, using the Dynamic Trunking Protocol (DTP):  If both switches support both protocols, they use ISL; otherwise, they use the protocol that both support  Today, many Cisco switches do not support the older ISL trunking protocol  Switches that support both types of trunking use the switchport trunk encapsulation {dot1q | isl | negotiate} interface subcommand to either configure the type or allow DTP to negotiate the type
  • 43. VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Configuration  DTP can also negotiate whether the two devices on the link agree to trunk at all, as guided by the local switch port’s administrative mode  The administrative mode refers to the configuration setting for whether trunking should be used.  Each interface also has an operational mode, which refers to what is currently happening on the interface, and might have been chosen by DTP’s negotiation with the other device.  Cisco switches use the switchport mode interface subcommand to define the administrative trunking mode
  • 44. VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Configuration Trunking Administrative Mode Options with the switchport mode Command
  • 45. VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Configuration Network with Two Switches and Three VLANs  The trunk does not dynamically form by default, because both switches default to an administrative mode of dynamic auto  By changing one switch to use dynamic desirable mode, the switches negotiate to use trunking
  • 46. VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Configuration  The output lists the default administrative mode setting of dynamic auto. the command lists SW1’s operational status as access  On a switch that supports both ISL and 802.1Q, this value would by default list “negotiate,” to mean that the type of encapsulation is negotiated  The output of the show interfaces trunk command, will be with no output
  • 47. VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Configuration
  • 48. VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Configuration
  • 49. VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Configuration
  • 50. VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Configuration
  • 51. VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com VLAN Trunking Configuration  Cisco recommends disabling trunk negotiation on most ports for better security  You can disable DTP negotiations altogether using the switchport nonegotiate interface subcommand Expected Trunking Operational Mode Based on the Configured Administrative Modes
  • 52. VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com Controlling Which VLANs Can Be Supported on a Trunk  The allowed VLAN list feature provides a mechanism for engineers to administratively disable a VLAN from a trunk  By default, switches include all possible VLANs (1–4094) in each trunk’s allowed VLAN list  Engineers can then limit the VLANs allowed on the trunk by using the following interface subcommand: switchport trunk allowed vlan {add | all | except | remove} vlan-list  The add option permits the switch to add VLANs to the existing allowed VLAN list  the remove option permits the switch to remove VLANs from the existing list  The all option means all VLANs, so you can use it to reset the switch to its original default setting (permitting VLANs 1–4094 on the trunk).
  • 53. VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com Controlling Which VLANs Can Be Supported on a Trunk A switch some reasons to prevent a particular VLAN’s traffic from crossing a trunk:  A VLAN has been removed from the trunk’s allowed VLAN list  A VLAN does not exist in the switch’s configuration: if the switch does not have a vlan vlan-id command configured, the switch will not forward frames in that VLAN over any interface  A VLAN does exist, but has been administratively disabled (shutdown): a VLAN can exist in a switch’s configuration, but also be administratively shut down either by using the shutdown vlan vlan-id global configuration command, or using the shutdown command in VLAN configuration mode.  A VLAN has been automatically pruned by VTP  A VLAN’s STP instance has placed the trunk interface into a blocking state
  • 54. VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com Controlling Which VLANs Can Be Supported on a Trunk  The show interfaces trunk command lists VLAN ID ranges as well, based on these same reasons  This command includes a progression of three lists of the VLANs supported over a trunk. These three lists are as follows: 1. VLANs allowed on the trunk, 1–4094 by default 2. VLANs from the first group that are also configured and active (not shut down) 3. VLANs from the second group that are not VTP pruned and not STP blocked
  • 55. VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com Controlling Which VLANs Can Be Supported on a Trunk VLANs 1 through 3 exist in SW1’s configuration, and are not shut down
  • 56. VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com Controlling Which VLANs Can Be Supported on a Trunk Step 1. VLAN 4 is configured. Step 2. VLAN 2 is shut down. Step 3. VLAN 3 is removed from the trunk’allowed VLAN list.
  • 57. VLAN and VLAN Trunking Configuration and Verification ©2015 Amir Jafari – www.amir-Jafari.com Controlling Which VLANs Can Be Supported on a Trunk
  • 58. Implementing Ethernet Virtual LANs ©2015 Amir Jafari – www.amir-Jafari.com Command References
  • 59. Implementing Ethernet Virtual LANs ©2015 Amir Jafari – www.amir-Jafari.com Command References
  • 60. Implementing Ethernet Virtual LANs ©2015 Amir Jafari – www.amir-Jafari.com References 1) Cisco Systems, Inc, www.cisco.com/ 2) Wendell Odom ,”Cisco CCENT/CCNA ICND1 100-101 Official Cert Guide”, Cisco Press, USA, 2013

Editor's Notes

  1. Beginning course details and/or books/materials needed for a class/project.
  2. Beginning course details and/or books/materials needed for a class/project.
  3. Beginning course details and/or books/materials needed for a class/project.
  4. Beginning course details and/or books/materials needed for a class/project.
  5. Beginning course details and/or books/materials needed for a class/project.
  6. Beginning course details and/or books/materials needed for a class/project.
  7. Beginning course details and/or books/materials needed for a class/project.
  8. Beginning course details and/or books/materials needed for a class/project.
  9. Beginning course details and/or books/materials needed for a class/project.
  10. Beginning course details and/or books/materials needed for a class/project.
  11. Beginning course details and/or books/materials needed for a class/project.
  12. Beginning course details and/or books/materials needed for a class/project.
  13. Beginning course details and/or books/materials needed for a class/project.
  14. Beginning course details and/or books/materials needed for a class/project.
  15. Beginning course details and/or books/materials needed for a class/project.
  16. Beginning course details and/or books/materials needed for a class/project.
  17. Beginning course details and/or books/materials needed for a class/project.
  18. Beginning course details and/or books/materials needed for a class/project.
  19. Beginning course details and/or books/materials needed for a class/project.
  20. Beginning course details and/or books/materials needed for a class/project.
  21. Beginning course details and/or books/materials needed for a class/project.
  22. Beginning course details and/or books/materials needed for a class/project.
  23. Beginning course details and/or books/materials needed for a class/project.
  24. Beginning course details and/or books/materials needed for a class/project.
  25. Beginning course details and/or books/materials needed for a class/project.
  26. Beginning course details and/or books/materials needed for a class/project.
  27. Beginning course details and/or books/materials needed for a class/project.
  28. Beginning course details and/or books/materials needed for a class/project.
  29. Beginning course details and/or books/materials needed for a class/project.
  30. Beginning course details and/or books/materials needed for a class/project.
  31. Beginning course details and/or books/materials needed for a class/project.
  32. Beginning course details and/or books/materials needed for a class/project.
  33. Beginning course details and/or books/materials needed for a class/project.
  34. Beginning course details and/or books/materials needed for a class/project.
  35. Beginning course details and/or books/materials needed for a class/project.
  36. Beginning course details and/or books/materials needed for a class/project.
  37. Beginning course details and/or books/materials needed for a class/project.
  38. Beginning course details and/or books/materials needed for a class/project.
  39. Beginning course details and/or books/materials needed for a class/project.
  40. Beginning course details and/or books/materials needed for a class/project.
  41. Beginning course details and/or books/materials needed for a class/project.
  42. Beginning course details and/or books/materials needed for a class/project.
  43. Beginning course details and/or books/materials needed for a class/project.
  44. Beginning course details and/or books/materials needed for a class/project.
  45. Beginning course details and/or books/materials needed for a class/project.
  46. Beginning course details and/or books/materials needed for a class/project.
  47. Beginning course details and/or books/materials needed for a class/project.
  48. Beginning course details and/or books/materials needed for a class/project.
  49. Beginning course details and/or books/materials needed for a class/project.
  50. Beginning course details and/or books/materials needed for a class/project.
  51. Beginning course details and/or books/materials needed for a class/project.
  52. Beginning course details and/or books/materials needed for a class/project.
  53. Beginning course details and/or books/materials needed for a class/project.
  54. Beginning course details and/or books/materials needed for a class/project.
  55. Beginning course details and/or books/materials needed for a class/project.
  56. Beginning course details and/or books/materials needed for a class/project.
  57. Beginning course details and/or books/materials needed for a class/project.
  58. Beginning course details and/or books/materials needed for a class/project.
  59. Beginning course details and/or books/materials needed for a class/project.