VLAN Configuration 3

CLI – This example sets port 3 to accept only tagged frames, assigns PVID 3 as the native VLAN ID, enables GVRP, sets the GARP timers, and then sets the switchport mode to hybrid.

Console(config)#interface ethernet

1/3

4-108

Console(config-if)#switchport acceptable-frame-types tagged

4-152

Console(config-if)#switchport ingress-filtering

4-153

Console(config-if)#switchport native vlan 3

4-154

Console(config-if)#switchport gvrp

 

4-165

Console(config-if)#garp timer join

20

4-166

Console(config-if)#garp timer leave 90

4-166

Console(config-if)#garp timer leaveall 2000

4-166

Console(config-if)#switchport mode

hybrid

4-152

Console(config-if)#

 

 

 

 

 

Private VLANs

Private VLANs provide port-based security and isolation between ports within the assigned VLAN. This switch supports two types of private VLANs: primary/ secondary associated groups, and stand-alone isolated VLANs. A primary VLAN contains promiscuous ports that can communicate with all other ports in the private VLAN group, while a secondary (or community) VLAN contains community ports that can only communicate with other hosts within the secondary VLAN and with any of the promiscuous ports in the associated primary VLAN. Isolated VLANs, on the other hand, consist a single stand-alone VLAN that contains one promiscuous port and one or more isolated (or host) ports. In all cases, the promiscuous ports are designed to provide open access to an external network such as the Internet, while the community or isolated ports provide restricted access to local users.

Multiple primary VLANs can be configured on this switch, and multiple community VLANs can be associated with each primary VLAN. One or more isolated VLANs can also be configured. (Note that private VLANs and normal VLANs can exist simultaneously within the same switch.)

To configure primary/secondary associated groups, follow these steps:

1.Use the Private VLAN Configuration menu (page 3-119) to designate one or more community VLANs, and the primary VLAN that will channel traffic outside of the VLAN groups.

2.Use the Private VLAN Association menu (page 3-119) to map the secondary (i.e., community) VLAN(s) to the primary VLAN.

3.Use the Private VLAN Port Configuration menu (page 3-121) to set the port type to promiscuous (i.e., having access to all ports in the primary VLAN), or host (i.e., having access restricted to community VLAN members, and channeling all other traffic through promiscuous ports). Then assign any promiscuous ports to a primary VLAN and any host ports a community VLAN.

To configure an isolated VLAN, follow these steps:

1.Use the Private VLAN Configuration menu (page 3-119) to designate an isolated VLAN that will channel all traffic through a single promiscuous port.

3-117

Page 153
Image 153
LevelOne GSW-2692 manual Private VLANs

GSW-2692 specifications

The LevelOne GSW-2692 is an advanced Layer 2 Gigabit Ethernet switch that is designed to cater to the networking needs of both small and medium-sized enterprises. Highly regarded for its reliability and performance, the GSW-2692 offers 24 Gigabit Ethernet ports, enabling seamless and high-speed data transfers across connected devices. With its robust design and versatile capabilities, this switch has earned its place as an essential component in modern IT infrastructure.

One of the standout features of the GSW-2692 is its extensive support for advanced networking technologies. The switch includes support for IEEE 802.1Q VLAN tagging, which allows users to create separate virtual networks for improved traffic management and enhanced security. By segregating network traffic, businesses can optimize bandwidth usage and reduce congestion, contributing to overall increased network performance.

Additionally, the GSW-2692 supports Spanning Tree Protocol (STP) and Rapid Spanning Tree Protocol (RSTP), ensuring loop-free network topology. This capability is crucial in larger networking environments where multiple switches are interconnected, as it prevents broadcast storms and enhances network resilience. The switch also includes features such as port mirroring, which provides administrators with the capability to monitor network traffic in real-time for troubleshooting and analysis.

Power over Ethernet (PoE) support is another significant advantage of the GSW-2692. With PoE functionality, it enables the switch to deliver electrical power along with data to connected devices such as IP cameras, VoIP phones, and wireless access points, eliminating the need for additional power sources and simplifying installations.

In terms of physical characteristics, the LevelOne GSW-2692 is designed for efficient heat dissipation and features a fanless design, which ensures silent operation. Its desktop or rack-mountable options make it flexible for various installation environments. The switch also features a web-based management interface, which simplifies the configuration and monitoring processes, allowing for intuitive management of network settings.

Overall, the LevelOne GSW-2692 stands out as a feature-rich, reliable, and high-performance networking solution that meets the demands of modern enterprises. Its combination of advanced technologies, scalability, and ease of use makes it an excellent choice for businesses looking to enhance their network infrastructure.