Allied Telesis at-8700xl series switch manual Summary of Vlan tagging rules, Protected VLANs

Page 67

Switching

67

can be enabled for a specified time, disabled, and displayed using the commands:

ENABLE VLAN={vlan-name1..255ALL} DEBUG={PKTALL} [OUTPUT=CONSOLE] [TIMEOUT={1..4000000000NONE}]

DISABLE VLAN={vlan-name1..255ALL} DEBUG={PKTALL}

SHOW VLAN DEBUG

To view packet reception and transmission counters for a VLAN, use the command (see the Interfaces chapter of the switch’s Software Reference):

SHOW INTERFACE=VLANn COUNTER

Summary of VLAN tagging rules

When designing a VLAN and adding ports to VLANs, the following rules apply.

1.Each port, except for the mirror port, must belong to at least one static VLAN. By default, a port is an untagged member of the default VLAN.

2.A port can be untagged for zero or one VLAN. A port that is untagged for a VLAN transmits frames destined for that VLAN without a VLAN tag in the Ethernet frame.

3.A port can be tagged for zero or more VLANs. A port that is tagged for a VLAN transmits frames destined for that VLAN with a VLAN tag, including the numerical VLAN Identifier of the VLAN.

4.A port cannot be untagged and tagged for the same VLAN.

5.The mirror port, if there is one, is not a member of any VLAN.

Protected VLANs

If a VLAN is Protected, Layer 2 traffic between ports that are members of a Protected VLAN is blocked. Traffic can be Layer 3 switched to another VLAN. This feature prevents members of a Protected VLAN from communicating with each other yet still allows members to access another network. Layer 3 Routing between Ports in a Protected VLAN can be prevented by adding a Layer 3 filter. The Protected VLAN feature also allows all of the members of the Protected VLAN to be in the same subnet.

A typical application is a hotel installation where each room has a port that can be used to access the Internet. In this situation it is undesirable to allow communication between rooms.

To create a Protected VLAN, use the command:

CREATE VLAN=vlan-nameVID=2..255 [PROTECTED]

VLAN Interaction with STPs and Trunk Groups

VLANs may have ports in more than one STP, when the ports belong to multiple VLANs. VLANs can belong to multiple STPs.

All the ports in a trunk group must have the same VLAN configuration: they must belong to the same VLANs and have the same tagging status, and can only be operated on as a group.

Software Release 2.6.1 C613-02030-00 REV B

Page 66 Page 68
Image 67
Page 66 Page 68
Contents AT-8700XL Series Switch Page Contents Switching Chapter Why Read this User Guide?AT-8700XL Series Switch Documentation Set Where To Find More InformationSwitching Features Features of the AT-8700XL Series SwitchTechnical support Layer 3 and Other Features Management FeaturesIntroduction Page This Chapter Getting Started with the Command Line Interface CLITerminal Communication Parameters Connecting a Terminal or PCAssigning an IP Address LoggingTo change the IP address for an interface, enter the command Setting Routes Choosing a Password Changing a PasswordAliases Using the CommandsSetting System Parameters Getting Command Line HelpLocation of the switch, for example Page Getting Started with the Graphical User Interface GUI Accessing the Switch via the GUI What is the GUI?Browser and PC Setup Http Proxy Servers Start here Establishing a Connection to the SwitchUse this procedure if Option 1 Configuring the Switch before InstallationTo install the switch into the same subnet as the PC Option 2 Installing the Switch into the LANEnable IP Remoteassign Option 3 Connecting to an Installed Switch To create an RSA key pair, use the command Secure AccessSet the UTC offset System Status System StatusConfiguration Menu Using the GUI Navigation and FeaturesUsing Configuration Pages An example of a configuration page with a selection table Editable Fields Ports Graphic Management MenuChanging the Password Diagnostics MenuMonitoring Menu Context Sensitive GUI Help Saving Configuration Entered with the GUICombining GUI and CLI Configuration Configuring Multiple DevicesUpgrading the GUI To upgrade the GUITroubleshooting Deleting Temporary Files Accessing the Switch via the GUITraffic Flow Time and NTP SolutionSolutions IP Addresses and DhcpLoading Software Page User Accounts and Privileges Operating the switchLogin Normal Mode and Security Mode Specific Parameters Storing Files in Flash Memory Remote ManagementExample output from the Show File command Using ScriptsStoring Multiple Scripts Saving the Switch’s ConfigurationFile Naming Conventions Loading and Uploading FilesSPA Loading FilesExample Load a Patch File Using Http Setting Loader DefaultsTo upload a log file Uploading Files From the SwitchExample Upload a Configuration File Using Tftp More informationUpgrading Switch Software To upgrade to a new software release Example Upgrade to a New Software Release UsingFlash To upgrade to a new patch file Example Upgrade to a new patch fileEditor screen layout Using the Built-in EditorSnmp MIBs in the AT-8700XL Series Software Reference Snmp and MIBsFor More About Operations and Facilities Enabling and Disabling Switch Ports Switch PortsPort Mirroring Autonegotiation of Port Speed and Duplex ModePort Trunking Packet Storm ProtectionVirtual Local Area Networks VLANs Creating VLANs Protected VLANs Summary of Vlan tagging rulesVlan Interaction with STPs and Trunk Groups Generic Vlan Registration Protocol Gvrp Quality of ServiceSpanning Tree Protocol STP Spanning Tree and Rapid Spanning Tree Port States IP SwitchingIgmp Snooping Routing Information Protocol RIPParameters TriggersEvent DescriptionPage Maintenance and Troubleshooting Switch startup messages How the Switch Starts UpBackup software files Backup configuration script How to Avoid ProblemsWatch for software updates If you accidentally do this, you will need to What to Do if You Clear Flash Memory CompletelyGetting the Most Out of Technical Support What to Do if Passwords are LostChecking Connections Using Ping Resetting Switch DefaultsTelnet Fails Troubleshooting IP ConfigurationsYour switch is acting as a Dhcp server Troubleshooting Dhcp IP AddressesUsing Trace Route for IP Traffic Your switch is acting as a Dhcp client

at-8700xl series switch specifications

Allied Telesis AT-8700XL Series Switches are sophisticated networking devices designed to meet the demanding requirements of modern enterprise environments. These managed Ethernet switches are optimized for reliability, performance, and scalability, making them ideal for various applications, from small businesses to large-scale networks.

One of the standout features of the AT-8700XL series is its robust Layer 2 and Layer 3 capabilities. This versatility allows the switches to perform both basic switching and advanced routing functions, facilitating efficient data traffic management. The series supports a wide range of standard protocols, including VLANs, STP, and RSTP, ensuring smooth and flexible network segmentation.

Another critical characteristic is the series' high-speed connectivity options. With multiple Gigabit Ethernet ports, the AT-8700XL series can handle significant data loads, ensuring seamless communication between connected devices. Furthermore, some models within the series offer 10 Gigabit uplink ports, providing the necessary bandwidth to connect to core networks or high-speed servers.

The AT-8700XL series incorporates advanced Quality of Service (QoS) features that enable network administrators to prioritize traffic effectively. This is particularly crucial for applications sensitive to latency, such as VoIP and video conferencing. By ensuring that time-sensitive data packets are transmitted promptly, the switches help maintain optimal performance across the entire network.

Power over Ethernet (PoE) support is yet another advantage of the AT-8700XL series. This feature allows the switches to deliver power to connected devices, such as IP cameras and wireless access points, via the Ethernet cable. This capability simplifies installations by reducing the need for additional power sources, ultimately saving on costs and improving efficiency.

Security is paramount in any network, and the AT-8700XL series does not disappoint. The switches employ robust security protocols, including Access Control Lists (ACLs), MAC address filtering, and DHCP snooping, to protect against unauthorized access and ensure network integrity.

In summary, Allied Telesis AT-8700XL Series Switches offer a comprehensive solution for various networking needs. With their Layer 2 and Layer 3 capabilities, high-speed connectivity, QoS features, PoE support, and security measures, these switches are well-equipped to enhance network efficiency and reliability, making them an excellent choice for organizations looking to future-proof their infrastructure. The AT-8700XL series exemplifies Allied Telesis's commitment to delivering high-quality networking solutions that cater to the evolving demands of businesses today.
Top Page Image Contents