Scribd
Upload
35 views

VLAN by SB 1

Digital Communication Lecture 1

Uploaded by

sud yadav
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PPTX, PDF, TXT or read online on Scribd
35 views

VLAN by SB 1

Digital Communication Lecture 1

Uploaded by

sud yadav
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PPTX, PDF, TXT or read online on Scribd
You are on page 1/ 25

VLAN

Sudesh Bhagat,
SDE(ES&IT)
VLAN
Upon completion of this course, you will be able to
understand:
– Why we need VLAN technology
– The two types of link and port
– The 802.1Q tagging
– Static and dynamic VLAN
– VLAN configuration
VLAN
• Virtual LAN.Group of devices on one or more
LANs that are configured ,so that they can
communicate as if they were attached to same
wire, where in fact they are located on a
number of different LAN segments.
• Because VLANs are based on logical instead of
physical connections, they are extremely
flexible.
Ethernet Broadcast Domain

• In a flat network, every device sees


every transmitted packet
Broadcast Domain

ARP Request Broadcast data will be


forwarded to every PC,
thus increasing the
burden of the CPU.
VLANs Establish Broadcast Domains

Broadcast Domain 2

Broadcast Domain 1

– VLANs plus routers limit broadcasts to the domain of origin


6
Flooding (NO VLAN)

All the broadcast data will be forwarded to all the ports except
the receiving port
After VLAN configured

VLAN separate broadcast domain.


Link Types

Access
Links

• An access link is a link that is a


member of only one VLAN
Link Types (Cont.)

Trunk Links

• A trunk link is capable of carrying multiple VLANs


VLAN Overview

• Segmentation
3rd floor

• Flexibility
2nd floor

• Security
1st floor
SALES HR ENG

A VLAN = A broadcast domain = Logical network


VLAN Overview

Segmentation: The use of VLAN can divide a single switch from a single
broadcast domain into multiple smaller broadcast domains that are equivalent
to several independent n/w’s physically isolated. In other words, VLAN divides
a network into several segments . This can reduce the number of hosts in each
network segment and improve the performance of the network.

Flexibility: VLAN configuration, member addition, member deletion and


member modification are all done in the switch through VLAN configuration.

Security: After a network is divided into VLANs, the hosts of different VLANs
must communicate via L3 device with one another .On the L3 device, we can
set ACL and others to guarantee the security of L3,that is , the communication
between VLANs is controlled.
Access Ports

• Access ports are used for DSLAM subscriber


connection

• An Access port can only belong to one VLAN

• By default all ports are Access ports


Trunk Ports

• Trunk ports carry data belonging to several


VLANs

• Trunk ports use tagging to identify which VLAN


a packet is associated with
VLAN Operations
• Each logical VLAN is like a separate physical
bridge and the members of one VLAN cannot
directly access the members of another
VLAN.
Switch A

Blue Black Green


VLAN VLAN VLAN
VLAN Operations
• VLANs can span across multiple switches and the
members of such a VLAN are located in the same
broadcast domain and can access one another.

• Work stations in separate VLANs will never


encounter traffic from or share Bandwidth with
other VLANs unless the data is routed.

• In other words, a router or a switch with routing


capabilities is required if devices on different
VLANs need to communicate.

• When we create a VLAN by defining which ports


belong to it, we are really just creating a boundary
for broadcast traffic.
VLAN Operations
Switch A Switch B

Trunk

Fast Ethernet

Blue Black Green Blue Black Green


VLAN VLAN VLAN VLAN VLAN VLAN

• Trunks carries traffic for multiple VLANs


• Trunks use special encapsulation to
distinguish between different VLANs
VLAN Frame Identification

VLAN1

VLAN1VLAN2VLAN3

Backbone

VLAN1
VLAN3
VLAN2
VLAN3 VLAN2

– Specifically developed for multi-VLAN,


inter-switch communications
– Places a unique identifier in header of
each frame
– Functions at Layer 2 18
VLAN Identification Methods

Green Green

Fast Ethernet
Blue Blue
Green Blue Red

Red
Red

RED VLAN RED VLAN

VLAN Identification Options:


• Cisco ISL-developed by cisco that allows a single
Ethernet interface to participate in multiple VLANs
(interswitch Link)
• IEEE 802.1Q
VLAN Identification Methods

• Frame Tagging is a method used to identify to


which VLAN the frame belongs.

• As soon as a frame enters the switch, the


switch encapsulates the frame with a header
that tags the frame with a VLAN ID
VLAN Identification Using IEEE 802.1Q

Initial MAC 2-Byte TPID


Initial Type/Data New CRC
Address 2-Byte TCI

– 2-byte tag protocol identifier (TPID)


– A fixed value of 0x8100. This TPID value indicates that the frame
carries the 802.1Q/802.1p tag information.
– 2-byte tag control information (TCI) –includes subscriber priority,
CFI and VLAN ID.
– 3-bit subscriber priority is in a scale of 8, where 0 is the lowest and
7 the highest.
– The 1-bit standard format indication, indicates whether the MAC
address in MAC data domain is a standard format, where CFI=0
indicates standard format, while CFI =1,indicates non-standard
formats.
– 12 bits are for ID of vlan
– CRC needs to be calculated again
IEEE 802.1q
8 7 6 5 4 3 2 1

TPID (0X8100) 2 Bytes TPID

Priority CFI VID


2 Bytes TCI
VID

1) Priority is used for 802.1p


2) CFI is used to check if the format of MAC is standard
3) VLAN ID is 12 bits
Types of VLANs
Static VLANs:
• Static VLANs offer port-based membership,
where switch ports are assigned to specific
VLANs.
• End user devices become members in a VLAN
based on which physical switch port they are
connected to.
• The ports on a single switch can be assigned
and grouped into many VLANs.
Types of VLANs
Dynamic VLANs
• Dynamic VLANs are used to provide membership
based on the MAC address of an end user device.
• When a device is connected to a switch port, the
switch must query a database to establish VLAN
membership.
• A network administrator must assign a VLAN using the
database of a VLAN Membership Policy Server (VMPS).
• Dynamic VLANs allow a great deal of flexibility and
mobility for end users.
Thanks

You might also like