User Tools

Site Tools


networking:vlan

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Next revision
Previous revision
Last revisionBoth sides next revision
networking:vlan [2020/10/24 23:49] – created hvillanuevanetworking:vlan [2020/11/05 01:07] hvillanueva
Line 14: Line 14:
  
 {{:networking:vlan_1_-_hvillanueva.png?600|}} {{:networking:vlan_1_-_hvillanueva.png?600|}}
 +
 +The demo was done with Cisco devices. Normally in a solution like this, the first thing that is always configured first is the layer 3 unit, which activates all inter-VLAN routing of all IDs tied to an IP subnet. In this case the Router.
 +
 +{{:networking:vlan_2_-_hvillanueva.png?600|}}
 +
 +{{:networking:vlan_3_-_hvillanueva.png?600|}}
 +
 +With the previous lines we activate the L3 interfaces that are in turn related to the VLAN ID L2.
 +
 +Next, we proceed to configure the access switches, first creating the VLANs:
 +
 +{{:networking:vlan_4_-_hvillanueva.png?600|}}
 +
 +Next we proceed to configure ports vs VLAN ID:
 +
 +VLAN 10 configuration, from port FastEthernet0/1 to FastEthernet0/8 (homogeneous configuration for all switches):
 +
 +{{:networking:vlan_5_-_hvillanueva.png?600|}}
 +
 +VLAN 20 configuration, from port FastEthernet0/9 to FastEthernet0/16 (homogeneous configuration for all switches):
 +
 +{{:networking:vlan_6_-_hvillanueva.png?600|}}
 +
 +VLAN 30 configuration, from port FastEthernet0/17 to FastEthernet0/24 (homogeneous configuration for all switches):
 +
 +{{:networking:vlan_7_-_hvillanueva.png?600|}}
 +
 +Then we proceed to configure the ports of common use where more than one VLAN ID will pass. In this case, it would be the inter-switch connection and switch-router communication ports (homogeneous configuration for all switches):
 +
 +{{:networking:vlan_8_-_hvillanueva.png?600|}}
 +
 +The Trunk method allows all the VLAN IDs marked with the exception of VLAN 1. The latter is transmitted without TAG.
 +
 +{{:networking:vlan_9_-_hvillanueva.png?600|}}
 +
 +After completing the basic configuration of L2 (VLAN) on each switch, we proceeded to the L3 configuration (IP address and Gateway within the range of said subnet), attached to a specific VLAN ID for each unit for its management. For this scenario, VLAN 1 was defined.
 +
 +{{:networking:vlan_10_-_hvillanueva.png?600|}}
 +
 +**Note:** For all switches their default route is configured:
 +
 +{{:networking:vlan_11_-_hvillanueva.png?600|}}
 +
 +Finally, the executed configuration is saved and displayed on the boot file.
 +
 +{{:networking:vlan_12_-_hvillanueva.png?600|}}
 +
 +With the present configurations executed in the different devices that are part of this demo, the following characteristics could be evidenced:
 +The ARP tables that were reported by each PC attached to a specific VLAN, only register addresses from its own Broadcast domain.
 +
 +If the router was disconnected from the network, it could only connect to PCs that were on the same VLAN ID.
 +
 +When configuring and connecting the router to the network, the connection with the IP addresses of the different VLAN IDs (1, 10, 20 and 30) was evidenced.
 +
 +It was evident that there is a Broadcast IP domain for each VLAN ID configured in the network.
 +
 +A sniffer system called wireshark packet was started on a PC
 +determined, in order to be able to observe the Ethernet packets with their respective 802.1Q mark in each of them. In order to achieve this, it was necessary to configure a technical feature called:
 +Port Mirroring (accurately pass incoming and outgoing packets from port X to port Y):
 +
 +{{:networking:vlan_13_-_hvillanueva.png?600|}}
 +
 +The results were not as expected because the PCs that the laboratory has are Windows and Windows is not built to support mechanisms for VLANs. To resolve this impasse it is necessary to load a new driver on the network card of the PC in question to allow this feature. However, an example searched on the internet shows us how the VLAN ID (3900) would look in this scenario:
 +
 +{{:networking:vlan_14_-_hvillanueva.png?600|}}
 +
 + --- //[[ing.hvillanueva@gmail.com|Humberto Villanueva]] 2020/11/05 01:07//

Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki