1

Virtual Local Area Networks

This chapter introduces the concepts of Virtual Local Area Networks (VLANs) and discusses the central concepts of IEEE 802.1Q VLANs. This chapter also contains information on how to contact Enterasys Networks for additional support related to VLANs.

1.1DEFINING VLANs

A Virtual Local Area Network is a group of devices that function as a single Local Area Network segment (broadcast domain). The devices that make up a particular VLAN may be widely separated, both by geography and location in the network.

The creation of VLANs allows users located in separate areas or connected to separate ports to belong to a single VLAN group. Users that are assigned to such a group will send and receive broadcast and multicast traffic as though they were all connected to a common network. VLAN aware switches isolate broadcast, multicast, and unknown traffic received from VLAN groups, so that traffic from stations in a VLAN are confined to that VLAN.

When stations are assigned to a VLAN, the performance of their network connection is not changed. Stations connected to switched ports do not sacrifice the performance of the dedicated switched link to participate in the VLAN. As a VLAN is not a physical location, but a membership, the network switches determine VLAN membership by associating a VLAN with a particular port or frame type.

Figure 1-1shows a simple example of a port based VLAN. Two buildings house the Sales and Finance departments of a single company, and each building has its own internal network. The stations in each building connect to a SmartSwitch in the basement. The two SmartSwitches are connected to one another with a high speed link.

Virtual Local Area Networks 1-1

Page 10 Page 12
Page 11
Image 11
Enterasys Networks 802.1Q manual Virtual Local Area Networks, Defining VLANs
Page 10 Page 12

802.1Q specifications

Enterasys Networks, a subsidiary of the Siemens Group, is widely recognized for its comprehensive networking solutions, with a strong emphasis on security, reliability, and performance. One of the key technologies offered by Enterasys is 802.1Q, a critical component of Ethernet networking that establishes standards for VLAN (Virtual Local Area Network) tagging. This technology is essential for enhancing network performance and managing traffic efficiently.

The primary feature of 802.1Q is its ability to create VLANs, which segment a physical network into multiple logical networks. This segmentation improves network security by isolating sensitive data and restricting access to specific users or devices. With VLANs, organizations can reduce broadcast traffic, thereby enhancing overall network efficiency. Different departments within an organization can operate on their own VLAN, ensuring that their traffic is kept separate from others.

One significant technological aspect of 802.1Q is its tagging method. When a frame passes through a switch port configured for IEEE 802.1Q, the switch appends a VLAN tag to the frame. This tag contains important information, such as the VLAN ID, enabling switches and devices throughout the network to identify which VLAN the frame belongs to. This tagging is especially critical in environments where multiple VLANs share the same physical infrastructure.

Another characteristic of Enterasys Networks' implementation of 802.1Q is interoperability with existing network standards and protocols. This means that organizations can implement VLAN tagging without requiring major upgrades or replacements of their switch hardware. Enterasys ensures that its switches are compliant with various industry standards, making it easier for enterprises to integrate these solutions into their existing network settings.

Security is another vital feature of Enterasys Networks’ 802.1Q offering. By leveraging VLANs, organizations can enforce stricter access controls and policies, reducing the risk of unauthorized access to sensitive network segments. This is particularly beneficial for industries with stringent compliance requirements, such as finance and healthcare.

In summary, Enterasys Networks' 802.1Q technology plays a pivotal role in modern networking by facilitating VLAN creation, enabling efficient traffic management, ensuring interoperability, and bolstering network security. As organizations increasingly rely on connected devices and data-driven processes, technologies like 802.1Q are essential for building robust, scalable, and secure networking environments.
Top Page Image Contents