Networking Part 6VLAN & Port Configuration, VLAN & Port Filtering, VLAN Filtering Criteria & VTP
Virtual Local Area NetworkOur virtual segment of the network within an already made LANA VLAN allows us to take the infrastructure for one local area network and make multiple virtual local networks. These help us to segment different broadcast domains which operate in the data link layer. It’s important to take note that different VLANs can’t talk to each other since they operate on OSI layer 2, which does not allow routing.-broadcasts go to the same VLAN-LAN -> whole network without routing operating on datalink layer-used if we have training facilities and want to segment important things away-Network -> Subnet network -> LAN - > VLAN
Port filteringMonitoring the ports and packets passing through based on their port numberNow port filtering enables us to allow or block network packets into or out of a device. Usually the router monitors the ports of the network protocols, and with port filtering you can block certain ports, or packets based on content. So, before we go into port filtering, it’s important to understand the difference of them: Ports within a network is either an access port or a trunk port. Access ports are the ports you usually connect to when you access and send data. Trunk ports are ports that connect other switches together to create a link similar to a bridge. This is just to continue on the data that is being sent to another switch and doesn’t always necessarily change or modify anything.
Devices connected to switches:>trunk ports = Switches connected to other switchesPort configuration / VLAN SettingsOptions for configuring ports and VLANs. Speed and duplex, voice VLANs, port aggregationWe also set different configuration to personalize the way data flows on our network to ensure best efficiency and security.Some Configuration Types>Port type: Span port / Trunk port>Port slot>VLAN settings >MAC filtering>Broadcast limit>Port configuration mode: Speed and duplexPort speed/DuplexAnything from port configuration to other standard configurations on devicesPort speeds allow us to choose things like:• Full duplex - send and receive data in both direction simultaneously• Half duplex - send and receive data in both direction one at the time• Simplex - Send or receive data in one direction• Port speeds - 10/100/1000 Mbs data transfer rateDevices usually automatically set this on default themselvesDuplex modes allow us to also choose things like MAC filtering and IP addressing – what addresses our router is giving out, the addressing scheme, the lease duration / DHCP vs static configurations and such.VLANS Filter Different Criteria-Port based (This is manually done. “This VLAN will be port 1 2 3 7 8 9” etc)-Mac address based (This is manually done, but takes less amount of time)-Subnet based (VLANs based on Subnet)
VLAN Trunking Protocol (VTP) (CISCO)Allows switches to communicate and set up VLAN themselves automaticallyWithout VTP we would have to manually add/rename/setup configurations of VLANs. Allows us to “plug and play”. The VTP carries VLAN information to all the switches in the VTP domain. In order to do so, each switch need different credentials:>VTP password>VTP protocol>VTP domain