Configuring VMPS

Restrictions for VMPS

Restrictions for VMPS

IEEE 802.1x ports cannot be configured as dynamic-access ports. If you try to enable IEEE 802.1x on a dynamic-access (VQP) port, an error message appears, and IEEE 802.1x is not enabled. If you try to change an IEEE 802.1x-enabled port to dynamic VLAN assignment, an error message appears, and the VLAN configuration is not changed.

Trunk ports cannot be dynamic-access ports, but you can enter the switchport access vlan dynamic interface configuration command for a trunk port. In this case, the switch retains the setting and applies it if the port is later configured as an access port.

You must turn off trunking on the port before the dynamic-access setting takes effect.

Dynamic-access ports cannot be monitor ports.

Secure ports cannot be dynamic-access ports. You must disable port security on a port before it becomes dynamic.

Private VLAN ports cannot be dynamic-access ports.

Dynamic-access ports cannot be members of an EtherChannel group.

Port channels cannot be configured as dynamic-access ports.

A dynamic-access port can participate in fallback bridging.

The VTP management domain of the VMPS client and the VMPS server must be the same.

The VLAN configured on the VMPS server should not be a voice VLAN.

Information About VMPS

Dynamic VLAN Assignments

The VLAN Query Protocol (VQP) is used to support dynamic-access ports, which are not permanently assigned to a VLAN, but give VLAN assignments based on the MAC source addresses seen on the port. Each time an unknown MAC address is seen, the switch sends a VQP query to a remote VLAN Membership Policy Server (VMPS); the query includes the newly seen MAC address and the port on which it was seen. The VMPS responds with a VLAN assignment for the port. The switch cannot be a VMPS server but can act as a client to the VMPS and communicate with it through VQP.

Each time the client switch receives the MAC address of a new host, it sends a VQP query to the VMPS. When the VMPS receives this query, it searches its database for a MAC-address-to-VLAN mapping. The server response is based on this mapping and whether or not the server is in open or secure mode. In secure mode, the server shuts down the port when an illegal host is detected. In open mode, the server denies the host access to the port.

If the port is currently unassigned (that is, it does not yet have a VLAN assignment), the VMPS provides one of these responses:

If the host is allowed on the port, the VMPS sends the client a vlan-assignment response containing the assigned VLAN name and allowing access to the host.

 

Catalyst 2960-XR Switch VLAN Configuration Guide, Cisco IOS Release 15.0(2)EX1

108

OL-29440-01

Page 122
Image 122
Cisco Systems WSC2960XR48FPSI manual Restrictions for Vmps, Information About Vmps, Dynamic Vlan Assignments

WSC2960XR48FPSI specifications

The Cisco WSC2960XR48FPSI is an advanced, high-performance switch that plays a vital role in today's enterprise networking environments. Designed for reliability and efficiency, it serves as a foundational component for organizations concentrating on network agility and scalability.

One of the standout features of the WSC2960XR48FPSI is its ability to support 48 Gigabit Ethernet ports, facilitating high-speed connectivity across multiple devices. This capacity makes it an ideal choice for enterprises that require robust network infrastructure to handle large volumes of traffic effortlessly. Additionally, it includes two 10-Gigabyte SFP+ uplink ports, providing enhanced bandwidth for backbone connections, enabling seamless integration with data center environments.

The switch supports Cisco's StackPower technology, which allows multiple switches to share power resources. This capability not only provides redundancy but also ensures that organizational networks can be efficiently managed, reducing operational costs by utilizing power resources wisely.

In terms of reliability, the WSC2960XR48FPSI offers a fanless design, making it an optimal choice for deployments in noise-sensitive environments such as classrooms or offices. Its features include support for Cisco's FlexStack-Plus technology, which allows for easy stacking of up to eight units. This results in simplified management and increased bandwidth as switches in the stack operate as a single entity.

The switch is powered by Cisco IOS Software, providing robust features, including advanced security protocols, quality of service (QoS) capabilities, and comprehensive network management tools. With support for multicast routing and enhanced security, organizations can safeguard their data while ensuring smooth and reliable communication across applications.

Moreover, the Cisco WSC2960XR48FPSI is designed to be energy-efficient, compliant with IEEE 802.3az Energy Efficient Ethernet standards, which aids in reducing power consumption without sacrificing performance. This commitment to sustainability makes it a favorable option for organizations striving for greener operations.

To summarize, the Cisco WSC2960XR48FPSI is an exemplary model of reliability, scalability, and performance. Its sophisticated features, including high port density, advanced security measures, and energy efficiency, make it a cornerstone for modern enterprise networks, enabling organizations to adapt effectively in an ever-evolving digital landscape.