This document provides an overview of virtual local area networks (VLANs). It begins with an introduction to VLANs, explaining that they allow devices to communicate as if on the same physical LAN even if they are on different physical LANs. The document then covers VLAN types including data, default, native and voice VLANs. It also discusses VLAN switch ports, managing VLANs, and the benefits of VLANs over wireless local area networks. In conclusion, it states that VLANs segment broadcast domains to improve LAN performance and manageability while reducing costs.
Zone Based Firewall is the most advanced method of a stateful firewall that is available on Cisco IOS
routers. The idea behind ZBF is that we don’t assign access-lists to interfaces but we will create different
zones. Interfaces will be assigned to the different zones and security policies will be assigned to traffic
between zones.
VLAN Trunking Protocol (VTP) is a Cisco proprietary protocol that propagates the definition of Virtual
Local Area Networks (VLAN) on the whole local area network.[1] To do this, VTP carries VLAN
information to all the switches in a VTP domain. VTP advertisements can be sent over ISL, 802.1Q, IEEE
802.10 and LANE trunks. VTP is available on most of the Cisco Catalyst Family products.
Zone Based Firewall is the most advanced method of a stateful firewall that is available on Cisco IOS
routers. The idea behind ZBF is that we don’t assign access-lists to interfaces but we will create different
zones. Interfaces will be assigned to the different zones and security policies will be assigned to traffic
between zones.
VLAN Trunking Protocol (VTP) is a Cisco proprietary protocol that propagates the definition of Virtual
Local Area Networks (VLAN) on the whole local area network.[1] To do this, VTP carries VLAN
information to all the switches in a VTP domain. VTP advertisements can be sent over ISL, 802.1Q, IEEE
802.10 and LANE trunks. VTP is available on most of the Cisco Catalyst Family products.
1. An introduction of LAN.
2. An introduction of VLAN.
3. Properties of VLAN.
4. Types of VLAN.
5. VLAN Identification Method
6. VLAN Trunking Protocol.
7. Inter-VLAN routing.
Inter-VLAN routing is the process of forwarding network traffic from one VLAN to another VLAN using a
router.
VLANs divide broadcast domains in a LAN environment. Whenever hosts in one VLAN need to
communicate with hosts in another VLAN, the traffic must be routed between them. This is known as
inter-VLAN routing. On Catalyst switches it is accomplished by creating Layer 3 interfaces (Switch virtual
interfaces (SVI)).
Virtual Local Area Network (VLAN) provide a way of grouping different network devices to ensure that those devices can communicate directly with one another.
This presentation gives a brief description about IP Address (Internet protocol address), Classes of IPv4. And also included, what is IPv4 and what is IPv6.
Highly Focussed on CCIE Learning .11 Full CCIE DC Racks for your CCIE Needs .Demo available for our Online Classes and Online CCIE DC Racks .Take Demo and Decide yourself .World Class Racks based in New Jersey ,USA and Bangalore India
1. An introduction of LAN.
2. An introduction of VLAN.
3. Properties of VLAN.
4. Types of VLAN.
5. VLAN Identification Method
6. VLAN Trunking Protocol.
7. Inter-VLAN routing.
Inter-VLAN routing is the process of forwarding network traffic from one VLAN to another VLAN using a
router.
VLANs divide broadcast domains in a LAN environment. Whenever hosts in one VLAN need to
communicate with hosts in another VLAN, the traffic must be routed between them. This is known as
inter-VLAN routing. On Catalyst switches it is accomplished by creating Layer 3 interfaces (Switch virtual
interfaces (SVI)).
Virtual Local Area Network (VLAN) provide a way of grouping different network devices to ensure that those devices can communicate directly with one another.
This presentation gives a brief description about IP Address (Internet protocol address), Classes of IPv4. And also included, what is IPv4 and what is IPv6.
Highly Focussed on CCIE Learning .11 Full CCIE DC Racks for your CCIE Needs .Demo available for our Online Classes and Online CCIE DC Racks .Take Demo and Decide yourself .World Class Racks based in New Jersey ,USA and Bangalore India
The Ethernet LAN has many security weaknesses when facing attacks externally and internally. This Presentation will helps user How they can Secure there LAN Network From unwanted threats
I tried to make as detailed, clear, abundant example and visual presentation of VLANs as possible. You can contact the e-mail address in the slide to get information about the yours issue or correct my any mistakes.
1. Explain the significance of each of the following types of VLAN .pdfbanishkyliachomasl99
1. Explain the significance of each of the following types of VLAN: Data, Management, Native,
and Blackhole. Explain where each type of VLAN fits into a LAN network. In addition, what is
the default VLAN on a Cisco switch for Data, Management, and Native frames? Justify your
answer
Solution
There are different types of VLANs. The type of network traffic they carry defines a particular
type of VLAN and others derive their names due to the type or a specific function the VLAN
performs. The following describes common VLAN:
A data VLAN also known as a user VLAN is configured to carry only user-generatedtraffic. The
importance of separating user data from other type of VLAN is proper switchmanagement and
control.
A Management VLAN is any VLAN you configure to access the managementcapabilities of a
switch.
A Native VLAN is assigned to an 802.1Q trunk port. An 802.1Q trunk port supportstraffic
coming from many VLANs as well as traffic that do not come from a VLAN. The802.1Q trunk
port places untagged traffic (traffic that does not come from a VLAN) onthe native VLAN.
A Blackhole VLAN is a term used for a vlan configured for unused ports. It’s a securitypractice,
whereby you create a vlan that has no route, or no default gateway to othernetworks within your
organization, or to the internet.
The Default VLAN is simply the VLAN which all Access Ports are assigned to until they are
explicitly placed in another VLAN. In the case of Cisco switches (and most other Vendors), the
Default VLAN is usually VLAN 1. Typically, this VLAN is only relevant on an Access port,
which is a port that sends and expects to receive traffic without a VLAN tag..
This chapter will cover how to configure, manage, and troubleshoot VLANs and
VLAN trunks. It will also examine security considerations and strategies relating
to VLANs and trunks, and best practices for VLAN design.
In computer networking, a single layer-2 network may be partitioned to create multiple distinct
broadcast domains, which are mutually isolated so that packets can only pass between them via one or
more routers; such a domain is referred to as a virtual local area network, virtual LAN or VLAN.
A virtual local area network (VLAN) is a logical group of workstations, servers and network devices that
appear to be on the same LAN despite their geographical distribution. A VLAN allows a network of
computers and users to communicate in a simulated environment as if they exist in a single LAN and are
sharing a single broadcast and multicast domain.
LAN
A Local Area Network (LAN) was originally defined as a network of computers located within the same area
Local Area Networks are defined as a single broadcast domain. This means that if a user broadcasts information on his/her LAN, the broadcast will be received by every other user on the LAN.
Broadcasts are prevented from leaving a LAN by using a router. The disadvantage of this method is routers usually take more time to process incoming data compared to a bridge or a switch
This presentations gives basic overview about networking and in depth insights about Openstack Neutron component.
Covers understanding on VLAN,VXLAN,Openstack vSwitch
Accelerate your Kubernetes clusters with Varnish CachingThijs Feryn
A presentation about the usage and availability of Varnish on Kubernetes. This talk explores the capabilities of Varnish caching and shows how to use the Varnish Helm chart to deploy it to Kubernetes.
This presentation was delivered at K8SUG Singapore. See https://feryn.eu/presentations/accelerate-your-kubernetes-clusters-with-varnish-caching-k8sug-singapore-28-2024 for more details.
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...DanBrown980551
Do you want to learn how to model and simulate an electrical network from scratch in under an hour?
Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)!
During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook.
PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides:
- A fully editable and extendable library for grid component modelling;
- Visualization tools to display your network;
- Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses;
The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well.
What you will learn during the webinar:
- For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills;
- For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.
State of ICS and IoT Cyber Threat Landscape Report 2024 previewPrayukth K V
The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development.
The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers:
State of global ICS asset and network exposure
Sectoral targets and attacks as well as the cost of ransom
Global APT activity, AI usage, actor and tactic profiles, and implications
Rise in volumes of AI-powered cyberattacks
Major cyber events in 2024
Malware and malicious payload trends
Cyberattack types and targets
Vulnerability exploit attempts on CVEs
Attacks on counties – USA
Expansion of bot farms – how, where, and why
In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East
Why are attacks on smart factories rising?
Cyber risk predictions
Axis of attacks – Europe
Systemic attacks in the Middle East
Download the full report from here:
https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdfPaige Cruz
Monitoring and observability aren’t traditionally found in software curriculums and many of us cobble this knowledge together from whatever vendor or ecosystem we were first introduced to and whatever is a part of your current company’s observability stack.
While the dev and ops silo continues to crumble….many organizations still relegate monitoring & observability as the purview of ops, infra and SRE teams. This is a mistake - achieving a highly observable system requires collaboration up and down the stack.
I, a former op, would like to extend an invitation to all application developers to join the observability party will share these foundational concepts to build on:
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Albert Hoitingh
In this session I delve into the encryption technology used in Microsoft 365 and Microsoft Purview. Including the concepts of Customer Key and Double Key Encryption.
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf91mobiles
91mobiles recently conducted a Smart TV Buyer Insights Survey in which we asked over 3,000 respondents about the TV they own, aspects they look at on a new TV, and their TV buying preferences.
Securing your Kubernetes cluster_ a step-by-step guide to success !KatiaHIMEUR1
Today, after several years of existence, an extremely active community and an ultra-dynamic ecosystem, Kubernetes has established itself as the de facto standard in container orchestration. Thanks to a wide range of managed services, it has never been so easy to set up a ready-to-use Kubernetes cluster.
However, this ease of use means that the subject of security in Kubernetes is often left for later, or even neglected. This exposes companies to significant risks.
In this talk, I'll show you step-by-step how to secure your Kubernetes cluster for greater peace of mind and reliability.
Welocme to ViralQR, your best QR code generator.ViralQR
Welcome to ViralQR, your best QR code generator available on the market!
At ViralQR, we design static and dynamic QR codes. Our mission is to make business operations easier and customer engagement more powerful through the use of QR technology. Be it a small-scale business or a huge enterprise, our easy-to-use platform provides multiple choices that can be tailored according to your company's branding and marketing strategies.
Our Vision
We are here to make the process of creating QR codes easy and smooth, thus enhancing customer interaction and making business more fluid. We very strongly believe in the ability of QR codes to change the world for businesses in their interaction with customers and are set on making that technology accessible and usable far and wide.
Our Achievements
Ever since its inception, we have successfully served many clients by offering QR codes in their marketing, service delivery, and collection of feedback across various industries. Our platform has been recognized for its ease of use and amazing features, which helped a business to make QR codes.
Our Services
At ViralQR, here is a comprehensive suite of services that caters to your very needs:
Static QR Codes: Create free static QR codes. These QR codes are able to store significant information such as URLs, vCards, plain text, emails and SMS, Wi-Fi credentials, and Bitcoin addresses.
Dynamic QR codes: These also have all the advanced features but are subscription-based. They can directly link to PDF files, images, micro-landing pages, social accounts, review forms, business pages, and applications. In addition, they can be branded with CTAs, frames, patterns, colors, and logos to enhance your branding.
Pricing and Packages
Additionally, there is a 14-day free offer to ViralQR, which is an exceptional opportunity for new users to take a feel of this platform. One can easily subscribe from there and experience the full dynamic of using QR codes. The subscription plans are not only meant for business; they are priced very flexibly so that literally every business could afford to benefit from our service.
Why choose us?
ViralQR will provide services for marketing, advertising, catering, retail, and the like. The QR codes can be posted on fliers, packaging, merchandise, and banners, as well as to substitute for cash and cards in a restaurant or coffee shop. With QR codes integrated into your business, improve customer engagement and streamline operations.
Comprehensive Analytics
Subscribers of ViralQR receive detailed analytics and tracking tools in light of having a view of the core values of QR code performance. Our analytics dashboard shows aggregate views and unique views, as well as detailed information about each impression, including time, device, browser, and estimated location by city and country.
So, thank you for choosing ViralQR; we have an offer of nothing but the best in terms of QR code services to meet business diversity!
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...UiPathCommunity
💥 Speed, accuracy, and scaling – discover the superpowers of GenAI in action with UiPath Document Understanding and Communications Mining™:
See how to accelerate model training and optimize model performance with active learning
Learn about the latest enhancements to out-of-the-box document processing – with little to no training required
Get an exclusive demo of the new family of UiPath LLMs – GenAI models specialized for processing different types of documents and messages
This is a hands-on session specifically designed for automation developers and AI enthusiasts seeking to enhance their knowledge in leveraging the latest intelligent document processing capabilities offered by UiPath.
Speakers:
👨🏫 Andras Palfi, Senior Product Manager, UiPath
👩🏫 Lenka Dulovicova, Product Program Manager, UiPath
SAP Sapphire 2024 - ASUG301 building better apps with SAP Fiori.pdfPeter Spielvogel
Building better applications for business users with SAP Fiori.
• What is SAP Fiori and why it matters to you
• How a better user experience drives measurable business benefits
• How to get started with SAP Fiori today
• How SAP Fiori elements accelerates application development
• How SAP Build Code includes SAP Fiori tools and other generative artificial intelligence capabilities
• How SAP Fiori paves the way for using AI in SAP apps
Key Trends Shaping the Future of Infrastructure.pdfCheryl Hung
Keynote at DIGIT West Expo, Glasgow on 29 May 2024.
Cheryl Hung, ochery.com
Sr Director, Infrastructure Ecosystem, Arm.
The key trends across hardware, cloud and open-source; exploring how these areas are likely to mature and develop over the short and long-term, and then considering how organisations can position themselves to adapt and thrive.
Transcript: Selling digital books in 2024: Insights from industry leaders - T...BookNet Canada
The publishing industry has been selling digital audiobooks and ebooks for over a decade and has found its groove. What’s changed? What has stayed the same? Where do we go from here? Join a group of leading sales peers from across the industry for a conversation about the lessons learned since the popularization of digital books, best practices, digital book supply chain management, and more.
Link to video recording: https://bnctechforum.ca/sessions/selling-digital-books-in-2024-insights-from-industry-leaders/
Presented by BookNet Canada on May 28, 2024, with support from the Department of Canadian Heritage.
Transcript: Selling digital books in 2024: Insights from industry leaders - T...
Vlan final
1. Virtual Local Area Network (VLAN)
Co-ordinated By:
K.Sandeep Kumar
Seminar By:
P.Vinodhini Veena
10321A12C0
Guided By:
M. Sandhya Rani
Faculty pc1 Faculty pc2
Student pc
2. Table of Contents
Objective
Introduction
VLAN Overview
VLAN in detail
Types of VLAN
Network traffic types
Switch ports
Managing VLAN
Benefits of VLAN over WLAN
Conclusion
References
Questions time
3. Objective
The main Objective of this presentation is to
Explain importance of VLAN in today's life.
To show configuring and Managing of VLAN
How it`s beneficial from WLAN.
TO show the Role of VLAN in switched LAN
4. Introduction
VLAN stands for Virtual Local Area Network.
• Viewed as a group of devices on different physical
LAN
• Can communicate with each other as if they were
all on the same physical LAN
• Configured through software rather than
hardware
• Extremely flexible.
5. Introduction
Both the switches and VLAN go together.
VLAN gives the administrator flexibility .
VLAN extends the traditional router bonded
broadcast domain to VLAN bonded
broadcast domain.
6. Introducing VLANs (1)
VLAN ID Ranges - Access VLANs are divided into either a
normal range or an extended range.
Normal Range VLANs -Used in small- and medium-sized
business and enterprise networks.
Identified by a VLAN ID between 1 and 1005.
IDs 1002 through 1005 are reserved for Token Ring and FDDI (Fiber
distributed data interface)VLANs.
IDs 1 and 1002 to 1005 are automatically created and cannot be
removed.
Configurations are stored within a VLAN database file, called vlan.dat.
The vlan.dat file is located in the flash memory of the switch.
The VLAN trunking protocol (VTP), which helps to manage
VLAN configurations between switches, can learn only normal
range VLANs and stores them in the VLAN database file.
7. Introducing VLANs (2)
Extended Range VLANs - Enable service providers to
extend their infrastructure to a greater number of
customers.
Some global enterprises could be large enough to need
extended range VLAN IDs.
Are identified by a VLAN ID between 1006 and 4094.
Support fewer VLAN features than normal range
VLANs.
Are saved in the running configuration file.
8. Introducing VLANs (3)
255 VLANs Configurable
One Cisco Catalyst 2960 switch can support up to 255
normal range and extended range VLANs, although the
number configured affects the performance of the
switch hardware.
9. VLAN Overview (1)
A VLAN allows a network administrator to create groups of
logically networked devices that act as if they are on their own
independent network, even if they share a common
infrastructure with other VLANs.
Using VLANs, you can logically segment switched networks
based on functions, departments, or project teams.
You can also use a VLAN to geographically structure your
network to support the growing reliance of companies on
home-based workers.
These VLANs allow the network administrator to implement
access and security policies to particular groups of users.
11. VLAN in detail
A VLAN is a logically separated IP sub network.
VLANs allow multiple IP networks and subnets to
exist on the same switched network.
For computers to communicate on the same VLAN,
each must have an IP address and a subnet mask that
is consistent for that VLAN.
The switch has to be configured with the VLAN and
each port in the VLAN must be assigned to the VLAN.
12. VLAN in detail (1)
A switch port with a singular VLAN configured
on it is called an access port.
Remember, just because two computers are
physically connected to the same switch does
not mean that they can communicate.
Devices on two separate networks and subnets
must communicate via a router (Layer 3), using
VLANs.
14. Types of VLANs
Data VLAN
Default VLAN
Native VLAN
Management VLAN
Voice VLAN
15. Data VLAN
Data VLAN - a VLAN that is configured to carry
only user-generated traffic.
It is common practice to separate voice and
management traffic from data traffic.
A data VLAN is sometimes referred to as a user
VLAN.
17. Default VLAN
All switch ports become a member of the default
VLAN after the initial boot up of the switch.
Having all the switch ports participate in the default
VLAN makes them all part of the same broadcast
domain.
This allows any device connected to any switch port to
communicate with other devices on other switch ports.
The default VLAN for Cisco switches is VLAN 1.
VLAN 1 has all the features of any VLAN, except that
you cannot rename it and you can not delete it.
18. Default VLAN(1)
Layer 2 controls traffic, such as CDP and spanning
tree protocol traffic, will always be associated with
VLAN 1 - this cannot be changed.
In the figure, VLAN 1 traffic is forwarded over the
VLAN trunks connecting the S1, S2, and S3 switches.
It is a security best practice to change the default
VLAN to a VLAN other than VLAN 1; this entails
configuring all the ports on the switch to be
associated with a default VLAN other than VLAN 1.
20. Native VLAN (1)
A native VLAN is assigned to an 802.1Q trunk port.
An 802.1Q trunk port supports traffic coming from
many VLANs (tagged traffic) as well as traffic that
does not come from a VLAN (untagged traffic).
The 802.1Q trunk port places untagged traffic on the
native VLAN.
In the figure, the native VLAN is VLAN 99.
Untagged traffic is generated by a computer attached
to a switch port that is configured with the native
VLAN.
21. Native VLAN (2)
Native VLANs are set out in the IEEE 802.1Q
specification to maintain backward compatibility
with untagged traffic common to legacy LAN
scenarios.
For our purposes, a native VLAN serves as a
common identifier on opposing ends of a trunk
link.
It is a best practice to use a VLAN other than
VLAN 1 as the native VLAN.
23. Management VLAN
A management VLAN is any VLAN you configure to
access the management capabilities of a switch.
VLAN 1 would serve as the management VLAN if you
did not proactively define a unique VLAN to serve as
the management VLAN.
You assign the management VLAN an IP address and
subnet mask.
A switch can be managed via HTTP, Telnet, SSH, or
SNMP.
VLAN 1 is normally used as the default VLAN,
VLAN1 would be a bad choice as the management
VLAN; you wouldn't want an arbitrary user connecting to
a switch to default to the management VLAN.
25. Voice VLAN
It is easy to appreciate why a separate VLAN is
needed to support Voice over IP (VoIP).
VoIP traffic requires:
Assured bandwidth to ensure voice quality
Transmission priority over other types of network
traffic
Ability to be routed around congested areas on
the network
Delay of less than 150 milliseconds (ms) across the
network
Voice VLAN works between a Catalyst switch, A
Cisco ip Phone and a computer.
27. Voice VLAN (2)
The Cisco IP Phone contains an integrated three-port
10/100 switch as shown in the Figure. The ports provide
dedicated connections to these devices :
Port 1 connects to the switch or other voice-over-IP
(VoIP) device.
Port 2 is an internal 10/100 interface that carries the IP
phone traffic.
Port 3 (access port) connects to a PC or other device.
30. Network traffic type
As VLAN has all the characteristics of LAN a Vlan
Should accommodate the same nw traffic as LAN
This includes :
• Network management traffic
• Control traffic
• Ip telephony traffic
• Multicast traffic
• Normal data traffic
• Scavenger class traffic
31. Network traffic type (1)
Network Management and Control Traffic
Many different types of network management
and control traffic can be present on the
network, such as Cisco Discovery Protocol (CDP)
updates, Simple Network Management Protocol
(SNMP) traffic, and Remote Monitoring (RMON)
traffic.
33. Network traffic type (3)
IP Telephony
The types of IP telephony traffic are signaling traffic
and voice traffic.
Signaling traffic is, responsible for call setup,
progress, and teardown, and traverses the network
end to end.
The other type of telephony traffic consists of data
packets of the actual voice conversation.
Data traffic should be associated with a data VLAN
(other than VLAN 1), and voice traffic is associated
with a voice VLAN.
35. Network traffic type (5)
IP Multicast
IP multicast traffic is sent from a particular source address to a
multicast group that is identified by a single IP and MAC
destination-group address pair.
Multicast traffic can produce a large amount of data streaming
across the network.
When the network must support multicast traffic, VLANs should
be configured to ensure multicast traffic only goes to those user
devices that use the service provided, such as remote video or
audio applications.
Routers must be configured to ensure that multicast traffic is
forwarded to the network areas where it is requested.
36. Network traffic type (6)
Normal Data
Normal data traffic is related to file creation
and storage, print services, e-mail database
access, and other shared network applications
that are common to business uses.
VLANs are a natural solution for this type of
traffic because you can segment users by their
functions or geographic area to more easily
manage their specific needs.
37. Network traffic type (7)
Scavenger Class
The Scavenger class is intended to provide less-than best-
effort services to certain applications.
Applications assigned to this class have little or no
contribution to the organizational objectives of the enterprise
and are typically entertainment oriented in nature.
These include peer-to-peer media-sharing applications
(KaZaa, Morpheus, Groekster, Napster, iMesh, and so on),
gaming applications (Doom, Quake, Unreal Tournament, and
so on), and any entertainment video applications.
38. VLAN Switch Port (1)
Static VLAN - Ports on a switch are manually assigned to a
VLAN.
Static VLANs are configured using the Cisco CLI.
This can also be accomplished with GUI management applications, such
as the Cisco Network Assistant.
Dynamic VLAN - This mode is not widely used in production
networks.
A dynamic port VLAN membership is configured using a special server
called a VLAN Membership Policy Server (VMPS).
With the VMPS, you assign switch ports to VLANs dynamically, based on
the source MAC address of the device connected to the port.
The benefit comes when you move a host from a port on one switch in the
network to a port on another switch in the network-the switch
dynamically assigns the new port to the proper VLAN for that host.
40. VLAN Switch Port (2)
Voice VLAN - A port is configured to be in voice mode so that it
can support an IP phone attached to it.
It is assumed that the network has been configured to ensure
that voice traffic can be transmitted with a priority status over
the network.
When a phone is first plugged into a switch port that is in voice
mode, the switch port sends messages to the phone providing
the phone with the appropriate voice VLAN ID and
configuration.
The IP phone tags the voice frames with the voice VLAN ID and
forwards all voice traffic through the voice VLAN.
47. Configuring VLANs (2)
The use of show VLAN brief command to display the contents of vlan.dat
File the default VLANs can be seen and student Vlan is highleted
52. Benefits of VLAN over WLAN(1)
Security - Groups that have sensitive data are
separated from the rest of the network, decreasing
the chances of confidential information breaches.
Faculty computers are on VLAN 10 and completely
separated from student and guest data traffic.
Cost reduction - Cost savings result from less need
for expensive network upgrades and more efficient
use of existing bandwidth and uplinks.
53. Benefits of VLAN over WLAN
(2)
Higher performance - Dividing flat Layer 2 networks
into multiple logical workgroups (broadcast domains)
reduces unnecessary traffic on the network and
boosts performance.
Broadcast storm mitigation - Dividing a network into
VLANs reduces the number of devices that may
participate in a broadcast storm.
In the figure you can see that although there are six
computers on this network, there are only three
broadcast domains: Faculty, Student, and Guest.
54. Benefits of VLAN over
WLAN(3)
Improved IT staff efficiency - VLANs make it easier to
manage the network because users with similar
network requirements share the same VLAN.
When you provide a new switch, all the policies and
procedures already configured for the particular VLAN
are implemented when the ports are assigned.
It is also easy for the IT staff to identify the function of
a VLAN by giving it an appropriate name.
In the figure, for easy identification VLAN 20 could be
named "Student", VLAN 10 could be named "Faculty",
and VLAN 30 "Guest."
55. Benefits of VLAN over
WLAN(4)
Simpler project or application management -
VLANs aggregate users and network devices to
support business or geographic requirements.
Having separate functions makes managing a project
or working with a specialized application easier, for
example, an e-learning development platform for
faculty.
It is also easier to determine the scope of the effects of
upgrading network services.
56. Conclusion
VLANs are used to segment broadcast
domains
In a switched LAN.
This improves the performance and
manageability of LANs
VLAS provide network administrators flexible
control over traffic associated with devices in
LAN
Reduce the cost of dealing with moves and
changes for organizations seen as an added
benefit.
57. References
"VLAN Information." UCDavis Network 21. 06 Mar. 2006
<http://net21.ucdavis.edu/newvlan.htm>.
"VLAN." 06 Mar. 2006 <http://www.webopedia.com/TERM/V/VLAN.html>.
"Answers.com." Virtual LAN. 06 Mar. 2006
<http://www.answers.com/topic/virtual-lan?method=6>.
"Network World Research Center." VLAN (Virtual LAN). 06 Mar. 2006
<http://www.networkworld.com/details/471.html>.
"The Virtual LAN Technology Report." 1996. decisys. 06 Mar. 2006
<http://www.3com.com/other/pdfs/solutions/en_US/20037401.pdf>.
"Virtual LAN." Wikipedia The Free Online Encyclopedia. 02 Mar. 2006. 06
Mar. 2006 <http://en.wikipedia.org/wiki/VLAN>.