Chapter 3 - VLANs. VLANs Logical grouping of devices or users Configuration done at switch via software Not standardized – proprietary software from vendor.

Slides:

Advertisements

Similar presentations

Virtual Trunk Protocol

Advertisements

Virtual Links: VLANs and Tunneling

© 2006 Cisco Systems, Inc. All rights reserved. ICND v2.3—2-1 Extending Switched Networks with Virtual LANs Introducing VLAN Operations.

VLAN KRISHNAKUMAR RAJENDRAN NIKITA PATEL TEJENDRA PATEL Guided by Prof, Edmund Gean.

Module 5 - Switches CCNA 3 version 3.0 Cabrillo College.

VLANs Virtual LANs CIS 278.

Multi-Layer Switching Layers 1, 2, and 3. Cisco Hierarchical Model Access Layer –Workgroup –Access layer aggregation and L3/L4 services Distribution Layer.

Ethernet and switches selected topics 1. Agenda Scaling ethernet infrastructure VLANs 2.

1 Version 3.0 Module 8 Virtual LANs. 2 Version 3.0.

1 Fall 2005 Layer 3 Switches and VLANs Qutaibah Malluhi CSE Department Qatar University.

Ch.6 - Switches CCNA 3 version 3.0.

Ch. 9 – VLANs (Virtual LANs)

VLANs (Virtual LANs) CS 158B Elaine Lim Allison Nham.

1 CCNA 3 v3.1 Module 5. 2 CCNA 3 Module 5 Switches/LAN Design.

VLANs Semester 3, Chapter 3 Allan Johnson Website:

Institute of Technology, Sligo Dept of Computing Semester 3, version Semester 3 Chapter 3 VLANs.

© Wiley Inc All Rights Reserved. CCNA: Cisco Certified Network Associate Study Guide CHAPTER 8: Virtual LANs (VLANs)

(part 3).  Switches, also known as switching hubs, have become an increasingly important part of our networking today, because when working with hubs,

Virtual LANs. VLAN introduction VLANs logically segment switched networks based on the functions, project teams, or applications of the organization regardless.

Connecting LANs, Backbone Networks, and Virtual LANs

Sybex CCNA Chapter 9: VLAN’s Instructor & Todd Lammle.

Ch. 8 – VLANs (Virtual LANs)

CECS 5460 – Assignment 3 Stacey VanderHeiden Güney.

1 Lecture #6 Switch – VLAN Asst.Prof. Dr.Anan Phonphoem Department of Computer Engineering, Faculty of Engineering, Kasetsart University, Bangkok, Thailand.

Connecting LANs, (network devices) Backbone Networks, and Virtual LANs Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction.

Virtual LAN Design Switches also have enabled the creation of Virtual LANs (VLANs). VLANs provide greater opportunities to manage the flow of traffic on.

Semester 3, v Chapter 3: Virtual LANs

Sybex CCNA Chapter 11: VLAN’s Instructor & Todd Lammle.

CCNA Guide to Cisco Networking Fundamentals Fourth Edition

CN2668 Routers and Switches (V2) Kemtis Kunanuraksapong MSIS with Distinction MCTS, MCDST, MCP, A+

Repeaters and Hubs Repeaters: simplest type of connectivity devices that regenerate a digital signal Operate in Physical layer Cannot improve or correct.

Chapter 8: Virtual LAN (VLAN)

© 1999, Cisco Systems, Inc. Module 9: Understanding Virtual LANs.

Cisco 3 - LAN Perrine. J Page 110/20/2015 Chapter 8 VLAN VLAN: is a logical grouping grouped by: function department application VLAN configuration is.

Author: Bill Buchanan. 1. Broadcast: What is the MAC address of this network address? 2. Requested host: All the hosts read the broadcast and checks.

© 2002, Cisco Systems, Inc. All rights reserved..

Computer Networks 15-1 Chapter 15. Connecting LANs, Backbone Networks, and Virtual LANs 15.1 Connecting devices 15.2 Backbone networks 15.3 Virtual LANs.

Cisco 3 - Switch Perrine. J Page 111/6/2015 Chapter 5 At which layer of the 3-layer design component would users with common interests be grouped? 1.Access.

Intro to Switching Lecture # 3 Hassan Shuja 03/14/2006.

1 CSCD 433 Network Programming Fall 2011 Lecture 5 VLAN's.

1 © 2003, Cisco Systems, Inc. All rights reserved. CCNA 3 v3.0 Module 9 Virtual Trunking Protocol.

Cisco S3C3 Virtual LANS. Why VLANs? You can define groupings of workstations even if separated by switches and on different LAN segments –They are one.

1 © 2003, Cisco Systems, Inc. All rights reserved. CCNA 3 v3.0 Module 8 Virtual LANs Cisco Networking Academy.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 VLANs LAN Switching and Wireless – Chapter 3.

STORE AND FORWARD & CUT THROUGH FORWARD Switches can use different forwarding techniques— two of these are store-and-forward switching and cut-through.

Switching Topic 2 VLANs.

McGraw-Hill©The McGraw-Hill Companies, Inc., 2004 Chapter 16 Connecting LANs, Backbone Networks, and Virtual LANs.

Configuring VLAN Chapter 14 powered by DJ 1. Chapter Objectives At the end of this Chapter you will be able to:  Understand basic concept of VLAN  Configure.

Chapter 4 Version 1 Virtual LANs. Introduction By default, switches forward broadcasts, this means that all segments connected to a switch are in one.

Instructor & Todd Lammle Sybex CCNA Chapter 9: VLAN’s 1.

VLAN Cisco (Router/Switch)

Chabot College ET Cisco Semester 3 Chapter 3 VLANs M. McGregor, Los Medanos College, Pittsburg, CA.

1 Version 3.0 Module 8 Virtual LANs. 2 Version 3.0.

15.1 Chapter 15 Connecting LANs, Backbone Networks, and Virtual LANs Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 VLANs.

Virtual Local Area Networks In Security By Mark Reed.

© 2002, Cisco Systems, Inc. All rights reserved.

Large-scale (Campus) Lan design (Part II)

Virtual Local Area Networks or VLANs

Virtual Local Area Networks (VLANs) Part I

IS3120 Network Communications Infrastructure

Chapter 7 Backbone Network

Virtual Local Area Network

Module 5 - Switches CCNA 3 version 3.0.

Chapter 3 VLANs Chaffee County Academy

Virtual LAN VLAN Trunking Protocol and Inter-VLAN Routing

Presentation transcript:

Chapter 3 - VLANs

VLANs Logical grouping of devices or users Configuration done at switch via software Not standardized – proprietary software from vendor

VLANs Logically segment the physical LAN infrastructure into different subnets (or broadcast domains for Ethernet)

Differences Between Traditional Switched LAN and VLANs VLANs work at Layer 2 and Layer 3 of OSI Communications between VLANs is done by routers VLANs provide a method of controlling network broadcasts Administrators assign users to VLANs VLANs increase network security – defines who can communicate with whom Group switch ports and their connected users into logically defined workgroups

Transport of VLANs Across the Backbone Ability to transport VLAN information between interconnected switches and routers that reside on the backbone –Remove physical boundaries between users –Increase configuration flexibility – users move –Provide mechanism for interoperability between backbone components

VLAN transportation Backbone commonly acts as collection point for large volumes of traffic Carries end user information and ID between switches, routers and directly attached servers

Routers in the VLAN Traditionally provide firewalls, broadcast management etc. Provide connected routes between different VLANs Cost effectively integrate external routers into switching architecture by using one or more high speed backbone connection like: –Fast Ethernet, or ATM connection Increasing the throughput between switches and routers Consolidating number of physical router ports required fro communication between VLANs

Frame Use in the VLAN Switches core component of VLAN communication Each switch makes forwarding and filtering decisions based on the frame –Based on VLAN metrics Approaches for logically grouping users into distinct VLANs: –Frame filtering –Frame tagging (identification)

Frame Filtering

Frame Tagging Uniquely assigns a VLAN ID to each frame VLAN IDs assigned by switch administrator Chosen by IEEE for its scalability Gaining recognition as the standard trunking mechanism IEEE 802.1q states that Frame Tagging is the way to implement VLANs

Frame Tagging Continued Places a unique identifier in the header of each frame as it is forwarded throughout the network When the frame exits the network backbone – switch removes the identifier before the frame is transmitted to its target Frame identification functions at Layer 2 and requires little administrative overhead

Ports, VLANs and Broadcasts VLANs make up a switched network – logically segmented Ports assigned to the same VLAN share broadcasts Three VLAN implementation –Port-centric –Static –Dynamic

Port-Centric All nodes connected to ports in the same VLAN are assigned same VLAN ID VLAN Membership by port make administrator’s job easier and more efficient because: Users assigned by port VLANs easily administered Increased security Packets do not LEAK into other domains

Port-Centric VLANs

Static VLANs Ports on switch that is statically assigned to a VLAN Require administrator to make changes Secure Easy to configure Straightforward to monitor Works well in which moves are controlled and managed

STATIC VLANs

Dynamic VLANs Ports on switch automatically determine their VLAN assignments Based on MAC addresses, logical addressing or protocol type of data packet Less administration with in the wiring closet when a user moves or new one added Centralized notification when an unrecognized user is added to the network More administration is required to initially set up database within the VLAN management software

Dynamic VLANs

VLAN Additions, Moves and Changes Companies continually reorganizing –These moves/changes are network manager’s biggest headaches and one of the largest expenses related to managing a network VLANs provide effective measures for controlling changes and reducing costs Users in a VLAN can share the same network address space i.e. IP subnet VLANs require less rewiring, configuration and debugging

Movement of Users

VLANs Help Control Broadcast Activity Most effective measures is to properly segment with firewalls that help prevent problems on segment from damaging other parts of the network Firewall segmentation provides reliability and minimizes overhead broadcast traffic No routers between switches broadcasts (layer 2) are sent to every switched port – referred to as a FLAT network(one broadcast domain across the whole network) Flat Network –Provides low latency & high throughput –Easy to administer

VLANs Controlling Broadcast Activity FLAT Network – Disadvantages –Increases vulnerability to broadcast traffic across all switches, ports, backbone links and users VLANs effectively extend firewalls from routers to the switch fabric and protecting against potentially dangerous broadcast problems Creating firewalls –Assign switch ports or users to specific VLAN groups both within single switches and across multiple connected switches

VLANs and Broadcast Activity

How do VLANs Improve Network Security Restrict number of users in a VLAN group Prevent another user from joining without first receiving approval from the VLAN network management application Configure all unused ports to a default low- service VLAN

Tightening Network Security

VLANS Save Money Connect existing HUBS to switches Each hub segment connected to a switch can be assigned only ONE VLAN Stations that share a hub segment are in the same VLAN If a station need to be assigned a new VLAN that station must move to the new hub with the appropriate VLAN

Using Existing Hubs

Summary Switch is designed to physically segment a LAN into individual domains LAN typically configured according to the physical infrastructure it connects LANs that use LAN switching devices - VLAN technology is cost effective and an efficient way of grouping network users into virtual workgroups regardless of their physical placment

Summary Continued VLANs work at Layer 2 and Layer 3 of the OSI VLAN architecture must allow transportation of VLAN information between interconnected switches and routers on the corporate backbone Most common approach for logically grouping users into distinct VLANS are frame filtering, frame tagging, and frame identfication

Summary Continued Types of VLANS –Port-centric –Static –Dynamic VLANs provide benefits –Reduce administration costs – moves, additions changes –Controlled broadcast activity –Workgroup and network security –Save money by using existing hubs

QUIZ

THE END!!!