Manuals / 3Com / Computer Equipment / Switch

3Com 10002211 manual Port Group VLANs, MAC Address Group VLANS, Application-Oriented VLANS

Models: 10002211

1 86

Download 86 pages 29.2 Kb

Page 64

C-2 APPENDIX C: VLANS ON THE COREBUILDER SYSTEM

C-2 APPENDIX C: VLANS ON THE COREBUILDER SYSTEM

Port Group VLANs

Port group VLANs group together one or more switch ports. This simple implementation of VLANs requires little conﬁguration. All frames received on a port are grouped together. For example, all frames received on a port that is part of a port group are kept within that port group, regardless of the data contained in the frames. Port groups are useful when trafﬁc patterns are known to be directly associated with particular ports. They can beneﬁt the user by restricting trafﬁc based on a set of simple rules.

MAC Address Group VLANS

VLANs allow a switch to make ﬁltering decisions based on grouping MAC addresses together. These MAC address groups can be conﬁgured so that stations in the group can only communicate with each other or with speciﬁc network resources. This solution is good for security. It allows the VLAN association to move with the station. However, MAC-address-grouped VLANs may require complex conﬁguration in comparison to other types of VLANs.

Port group and MAC address group VLANs are supported using the packet ﬁltering capabilities in the CoreBuilder system. For information on port group and MAC address group ﬁltering, refer to your CoreBuilder 6000 Operation Guide and CoreBuilder 6000 Administration Console User Guide.

Application-Oriented VLANS

Using the CoreBuilder ﬁltering capability, application-speciﬁc trafﬁc such as telnet trafﬁc or FTP trafﬁc can be ﬁltered based on higher-layer information. You create this application-oriented VLAN by conﬁguring packet ﬁlters that specify data and offsets of the data within received packets. For example, to use a ﬁlter on a particular port for all telnet trafﬁc, create a ﬁlter that discards all TCP trafﬁc received on the telnet port.

IP multicast routing and autocast VLANs are additional VLAN features in the CoreBuilder that can be used to group IP multicast trafﬁc for speciﬁc applications.

Image 64

3Com 10002211 manual Port Group VLANs, MAC Address Group VLANS, Application-Oriented VLANS

Contents

COREBUILDER SOFTWARE INSTALLATION AND RELEASE NOTESPublished October 9,1997 Revision 3Com Corporation 5400 Bayfront Plaza Santa Clara, California CONTENTS COREBUILDER 6000 EXTENDED SWITCHING SOFTWARE REVISIONHardware Dependencies Upgrading Your LMM or LMM+A IP MULTICAST ROUTING B REMOTE MONITORING RMON TECHNOLOGYD ADMINISTERING VLANS C VLANS ON THE COREBUILDER SYSTEM3COM CORPORATION LIMITED WARRANTY 3Com Bulletin Board ServiceAccess by Analog Modem Access by Digital ModemOverview COREBUILDEREXTENDED SWITCHING SOFTWARE Release Highlights Filter MIB Hard Disk Copying to the UNIX Platform 9 Remove diskette #4 using the following command Loading System Software onthe LMM+ the Setup dialog boxTo load the new software corrupted for example, when the power fails while you are updating Corebuilder 6000 Administration Console User GuideCoreBuilder 6000 Command Quick Reference folded card LANplex 6000 Extended Switching User GuideFDDI Switching Module FSM Guide Fast Ethernet Switching Module FESM GuideWhat’s New at Revision 8.2.3?IP Interface Conﬁguration Change 7 Enter the advertisement address to be used on the interface ExampleSelect IP stack by slot 1-3,5,7,9-12 1 Enter IP address Enter subnet mask 255.255.0.0 Enter costenabled disabled12 COREBUILDER 6000 EXTENDED SWITCHING SOFTWARE REVISION bridge stpFollowLinkStateSample display of bridge port information What’s New at Revision 8.2.0?corrections that are implemented at this release What’s New at Revision 8.2.0? The system displays this message You receive the prompt to select each port’s duplex modeduplexMode tokenringfastEthernetDefault To select the default all, press Return Logout the other telnet session? Y/N y Enter Password correctpassword Incorrect password. DisconnectingDisconnecting LOGGING OUT the other telnet session1 From the top level of the Administration Console, enter The system prompts you for slot numbersThe system prompts you for the port type The system prompts you for port numbersNote these additional items This message is immediately overwritten with System Issues The ESM supports only RMON groups 1 through VLAN statistics are not supported on the ESM A few lines below, add the following RowStatus comment In the IMPORTS section, addKnown Problems Roving Analysis cannot monitor outgoing routed packets bridge.mib - Bridge MIB, RFC ethernet.mib - Ethernet MIB, RFC lp.mib - LANplex Systems MIB, version 30 COREBUILDER 6000 EXTENDED SWITCHING SOFTWARE REVISION Support for IP routing on the FDDI Switching Module FSMcontinued Revision History 32 COREBUILDER 6000 EXTENDED SWITCHING SOFTWARE REVISION Support for Single Mode Fiber SMF on the FCM moduleThe Ethernet MIB attributes, requestedEnabledPaths and lpBridgePortAddressLearnedEvent and34 COREBUILDER 6000 EXTENDED SWITCHING SOFTWARE REVISION LANplex 6000 Extended Switching User Guide IP MULTICAST ROUTINGOverview disabled Enabling andDisabling DVMRP Disabling IGMPMulticast Administering IPInterfaces Rate Limit ip multicast interface disable ip multicast interface enableSelect IP stack by slot 2,3,7,9-12all Enter an IP interface indexAdministering Multicast Tunnelsmulticast internetworks through one or more unicast routers that require a tunnel are those that require a connection between twosubnetworks as the local IP address The destination router cannot be directly connected to the sameEnter the index numbers of the interfaces with which you want to Displaying Routes Enter the slots of the switching module for which you want to view IPThe following display shows all available multicast routes Table A-1 describes the ﬁelds in the route displayMulticast Cache Displaying thefor packets observed on the system. The multicast cache shows you how Displaying the Multicast Cache The following display shows the multicast cache conﬁgurationA-11 Table A-2 describes the ﬁelds in the CacheDisplay bracket indicate a multicast subnetwork. Entries without anInterface number on which that gateway is connected. Traffic is Set of interfaces on which the traffic will be flooded out. I repreREMOTE MONITORING RMON B TECHNOLOGY CoreBuilder RMONImplementation suite of applicationsRMON Groups Number of received octets Number of received packets per interface for each time interval includes Example of an Alarm Threshold Setting Alarm ThresholdsFigure B-1 shows a counter with thresholds set manually RMON Hysteresis Mechanism 3Com Transcend RMON Agents B-8 APPENDIX B REMOTE MONITORING RMON TECHNOLOGYManagement Information Base MIB Figure B-2 shows an example of the CoreBuilder RMON implementationThe displayed information includes these items About VLANs VLANS ON THECOREBUILDER SYSTEM Port Group VLANs MAC Address Group VLANSApplication-Oriented VLANS C-2 APPENDIX C VLANS ON THE COREBUILDER SYSTEMCoreBuilder Protocol-Sensitive VLAN Conﬁguration Protocol-Sensitive VLANSProtocol Suite About VLANsLayer 3 Addressing Information The ﬂood domain for protocols not supported by any VLAN in the systemModifying the Default VLAN VLAN Exception Flooding Overlapped IP VLANs For example, two IP VLANs can be conﬁgured for ports 1-10 as followsRouting Between VLANs ADMINISTERING VLANS Displaying VLAN InformationExample of a summary display for several VLANs D-2 APPENDIX D ADMINISTERING VLANSExample of a detailed display for the VLANs Table D-1describes these statistics to set up flood domains for overlapping IP VLAN subnetworksNumber of flooded broadcast and multicast bytes that were Deﬁning VLAN Information for aTraditional Bridge SNA,Vines,X.25,NetBIOS,defaultInformation for an HSI Switch Engine The maximum number of VLANs you can deﬁne on a single bridge isD-6 APPENDIX D ADMINISTERING VLANS Modifying VLAN Information Examplebridge vlan modify Select menu option bridge/vlan remove bridge vlan removeSelect bridges by slot 2-3,5,10-12all Select VLAN indexes 1-2all Services Online TechnicalService TECHNICAL SUPPORTAccess by Digital Modem Access by Analog Modem1 408 Local access numbers are available within the following countries Santa Clara, California Czech Republic/SlovakCentral European HQ 305 261 3266 Miami, FloridaTo obtain an RMA number, call or fax Page 3Com Corporation LIMITED WARRANTY STANDARD WARRANTY SERVICEHARDWARE SOFTWARELIMITATION OF LIABILITY GOVERNING LAWyou specific legal rights which may vary depending on local law 3Com Corporation, 5400 Bayfront Plaza, Santa Clara, CA 95052-8145 408