Manuals / Brands / Computer Equipment / Switch / Allied Telesis / Computer Equipment / Switch

Allied Telesis 2.6.1 Summary of VLAN tagging rules, Protected VLANs, VLAN Interaction with STPs and Trunk Groups

1 118

Download 118 pages, 1.37 Mb

Layer 2 Switching 79

Software Release 2.6.1

C613-02039-00 REV A

Summary of VLAN tagging rules

When designing a VLAN and adding ports to VLANs, the following rules

apply.

1. Each port, except for the mirror port, must belong to at least one static

VLAN. By default, a port is an untagged member of the default VLAN.

2. A port can be untagged for zero or one VLAN. A port that is untagged for

a VLAN transmits frames destined for that VLAN without a VLAN tag in

the Ethernet frame.

3. A port can be tagged for zero or more VLANs. A port that is tagged for a

VLAN transmits frames destined for that VLAN with a VLAN tag,

including the numerical VLAN Identifier of the VLAN.

4. A port cannot be untagged and tagged for the same VLAN.

5. The mirror port, if there is one, is not a member of any VLAN.

Protected VLANs

If a VLAN is Protected, Layer 2 traffic between ports that are members of a

Protected VLAN is blocked. Traffic can be Layer 3 switched to another VLAN.

This feature prevents members of a Protected VLAN from communicating with

each other yet still allows members to access another network. Layer 3 Routing

between Ports in a Protected VLAN can be prevented by adding a Layer 3

filter. The Protected VLAN feature also allows all of the members of the

Protected VLAN to be in the same subnet.

A typical application is a hotel installation where each room has a port that can

be used to access the Internet. In this situation it is undesirable to allow

communication between rooms.

To create a Protected VLAN, use the command:

CREATE VLAN=vlan-name VID=2..4094 [PROTECTED]

VLAN Interaction with STPs and Trunk Groups

Each VL AN and p ort can o nly bel ong to one Spanning Tree entity (STP). A port

cannot be added to a VLAN that is in a different STP from the VLANs to which

the port already belongs, with one exception. The exception is that an untagged

port in the default VLAN can be moved from the default VLAN to any other

VLAN in any STP, if the port belongs only to the default VLAN as an untagged

port.

All the ports in a trunk group must have the same VLAN configuration: they

must belong to the same VLANs and have the same tagging status, and can

only be operated on as a group.

Contents

Main Page Contents Page Page Page Chapter 1 Introduction Introducing the AT-8800 Series Switch Why Read this User Guide? Where To Find More Information The AT-8800 Series Switch Documentation Set Online Technical Support Features of the AT-8800 Series Switch Management Features Software Features Special Feature Licences Warning about FLASH memory Chapter 2 Getting Started with the Command Line Interface (CLI) Connecting a Terminal or PC Terminal Communication Parameters Logging In Assigning an IP Address Setting Routes Changing a Password Choosing a Password Using the Commands Aliases Getting Command Line Help Enabling Special Feature Licences Setting System Parameters Chapter 3 Getting Started with the Graphical User Interface (GUI) What is the GUI? Accessing the Switch via the GUI Browser and PC Setup HTTP Proxy Servers Establishing a Connection to the Switch Start here Option 1: Configuring the Switch before Installation Option 2: Installing the Switch into the LAN AT-8800 Series Switch PC Hub or Layer 2 Switch Page Option 3: Connecting to an Installed Switch Secure Access Page System Status Using the GUI: Navigation and Features The Configuration Menu Using Configuration Pages Page Editable Fields Ports Graphic Apply Button Cancel Button Close Button The Management Menu The Monitoring Menu The Diagnostics Menu Changing the Password Context Sensitive GUI Help Saving Configuration Entered with the GUI Combining GUI and CLI Configuration Configuring Multiple Devices Upgrading the GUI Troubleshooting Deleting Temporary Files Accessing the Switch via the GUI Tra ffi c Fl ow IP Addresses and DHCP Time and NTP Loading Software Page Chapter 4 Operating the switch User Accounts and Privileges Page Normal Mode and Security Mode Page Remote Management Storing Files in FLASH Memory Using Scripts Saving the Switchs Configuration Storing Multiple Scripts Loading and Uploading Files File Naming Conventions Loading Files Setting LOADER Defaults Example: Load a Patch File Using HTTP Uploading Files From the Switch Example: Upload a Configuration File Using TFTP More information Upgrading Switch Software Example: Upgrade to a New Software Release Using TFTP Page Example: Upgrade to a new patch file Using the Built-in Editor SNMP and MIBs For More About Operations and Facilities Page Chapter 5 Layer 2 Switching Switch Ports Enabling and Disabling Switch Ports To enable or disable a switch port, use the commands: To display information about switch ports, use the command: Page Autonegotiation of Port Speed and Duplex Mode Port Trunking Page Packet Storm Protection Port Mirroring Port security Virtual Local Area Networks (VLANs) VLAN Tagging Page VLAN Membership using VLAN Tags VLAN Membership of Untagged Packets Creating VLANs Page Summary of VLAN tagging rules Protected VLANs VLAN Interaction with STPs and Trunk Groups Generic VLAN Registration Protocol (GVRP) Layer 2 Switching Process The Ingress Rules The Learning Process The Forwarding Process Layer 2 Filtering Page The Egress Rules Quality of Service Spanning Tree Protocol (STP) Spanning Tree Modes Spanning Tree and Rapid Spanning Tree Port States Configuring STP Page Page Page Page Page Page To show STP counters, use the command: Page Interfaces to Layer 3 Protocols IGMP Snooping Page Page Triggers Chapter 6 Layer 3 Internet Protocol (IP) IP Multicasting Routing Information Protocol (RIP) Novell IPX AppleTalk Resource Reservation Protocol (RSVP) Page Chapter 7 Maintenance and Troubleshooting How the Switch Starts Up How to Avoid Problems Set system territory Backup software files Backup configuration script Backup switch Configure logging Configure Firewall FLASH compaction Watch for software updates What to Do if You Clear FLASH Memory Completely What to Do if the PPP Link Disconnects Regularly What to Do if Passwords are Lost Getting the Most Out of Technical Support Resetting Switch Defaults Checking Connections Using PING Troubleshooting IP Configurations Troubleshooting DHCP IP Addresses Troubleshooting IPX Configurations Using Trace Route for IP Traffic