8/11/2019 Sybex CCNA 640-802 Chapter 11

1/43

Sybex CCNA 640-802Chapter 11: VLANs Instructor & Todd Lammle

8/11/2019 Sybex CCNA 640-802 Chapter 11

2/43

Chapter 11 Objectives

The CCNA Topics Covered in this chapterinclude:

What is a VLAN? VLAN Memberships VLAN links Frame tagging VTP, RSTP,PVSTP, 802.1q Trunking Configuring VLANs Inter-VLAN Communication Configuration examples

2

8/11/2019 Sybex CCNA 640-802 Chapter 11

3/43

Virtual LANs (VLANs)

Definition: A logical grouping ofnetwork users and resourcesconnected to administratively defined

ports on a switch. Smaller broadcast domains Organized by:

Location Function Department Application or protocol

8/11/2019 Sybex CCNA 640-802 Chapter 11

4/43

Switches

8/11/2019 Sybex CCNA 640-802 Chapter 11

5/43

Features of VLANs

Simplify network management Provides a level of security over

a flat network Flexibility and Scalability

8/11/2019 Sybex CCNA 640-802 Chapter 11

6/43

Broadcast Control

Broadcasts occur in everyprotocol

Bandwidth & Broadcasts

Flat network

VLANs & Broadcasts

8/11/2019 Sybex CCNA 640-802 Chapter 11

7/43

Flat Network Structure

8/11/2019 Sybex CCNA 640-802 Chapter 11

8/43

Switched Network

8/11/2019 Sybex CCNA 640-802 Chapter 11

9/43

Security

Flat network problems

VLANs

8/11/2019 Sybex CCNA 640-802 Chapter 11

10/43

Flexibility & Scalability Layer-2 switches only read frames

Can cause a switch to forward allbroadcasts

VLANs Essentially create broadcastdomains

Greatly reduces broadcast traffic

Ability to add wanted users to a VLANregardless of their physical location Additional VLANs can be created when

network growth consumes morebandwidth

8/11/2019 Sybex CCNA 640-802 Chapter 11

11/43

Physical LANs Connected To A Router

8/11/2019 Sybex CCNA 640-802 Chapter 11

12/43

VLANs Remove The PhysicalBoundary

8/11/2019 Sybex CCNA 640-802 Chapter 11

13/43

VLAN Memberships

Static VLANs Typical method of creating VLANs Most secure

A switch port assigned to a VLAN always

maintains that assignment until changed Dynamic VLANs

Node assignment to a VLAN is automatic MAC addresses, protocols, network addresses,

etc VLAN Management Policy Server (VMPS)

MAC address database for dynamic assignments MAC-address to VLAN mapping

8/11/2019 Sybex CCNA 640-802 Chapter 11

14/43

Identifying VLANs

Access links A link that is part of only one VLAN

Trunk links Carries multiple VLANs

8/11/2019 Sybex CCNA 640-802 Chapter 11

15/43

Identifying VLANs (cont.)

8/11/2019 Sybex CCNA 640-802 Chapter 11

16/43

Frame Tagging

Definition: A means of keepingtrack of users & frames as theytravel the switch fabric & VLANs

User-defined ID assigned to eachframe

VLAN ID is removed before

exiting trunked links & accesslinks

8/11/2019 Sybex CCNA 640-802 Chapter 11

17/43

VLAN ID Methods

Inter-Switch Link (ISL) Cisco proprietary

FastEthernet & Gibabit Ethernetonly IEEE 802.1q

Must use if trunking between Cisco& non-Cisco switch

8/11/2019 Sybex CCNA 640-802 Chapter 11

18/43

Inter-Switch Link (ISL)Protocol

Definition: A means of explicitlytagging VLAN information ontoan Ethernet frame

Allows VLANs to be multiplexedover a trunk line

Cisco proprietary External tagging process

8/11/2019 Sybex CCNA 640-802 Chapter 11

19/43

VLAN Trunk Protocol (VTP)

Purpose: to manage allconfigured VLANs across aswitch internetwork & maintainconsistency

Allows an administrator to add,delete, & rename VLANs

8/11/2019 Sybex CCNA 640-802 Chapter 11

20/43

VTP Benefits

Benefits Consistent configuration Permits trunking over mixed

networks Accurate tracking Dynamic reporting Plug-and-Play

A VTP server must be created tomanage VLANs

8/11/2019 Sybex CCNA 640-802 Chapter 11

21/43

VTP Modes

8/11/2019 Sybex CCNA 640-802 Chapter 11

22/43

VTP Modes of Operation

Server Default for all Catalyst switches Minimum one server for a VTP domain

Client Receives information + sends/receives

updates Cannot make any changes

Transparent Does not participate in a VTP domain

but forwards VTP advertisements Can add/delete VLANs Locally significant

8/11/2019 Sybex CCNA 640-802 Chapter 11

23/43

Router with Individual VLANassociations

8/11/2019 Sybex CCNA 640-802 Chapter 11

24/43

Routing Between VLANs

8/11/2019 Sybex CCNA 640-802 Chapter 11

25/43

Configuring VLANs

Creating VLANs Assigning Switch Ports to

VLANs Configuring Trunk Ports Configuring Inter-VLAN

routing

8/11/2019 Sybex CCNA 640-802 Chapter 11

26/43

Creating VLANs

S1#config tS1(config)#vlan ?

WORD ISL VLAN IDs 1-4094internal internal VLAN

S1(config)#vlan 2

S1(config-vlan)#name SalesS1(config-vlan)#vlan 3S1(config-vlan)#name MarketingS1(config-vlan)#vlan 4S1(config-vlan)#name Accounting

i i S i h

8/11/2019 Sybex CCNA 640-802 Chapter 11

27/43

Assigning Switch Ports toVLANs

S1#config tS1(config)#int fa0/3S1(config-if)#switchport mode accessS1(config-if)#switchport access vlan 3

8/11/2019 Sybex CCNA 640-802 Chapter 11

28/43

Configuring Trunk Ports2960 (802.1q)S1#config t

S1(config)#int fa0/8S1(config-if)#switchport mode trunk

3560 (ISL or IEEE 802.1Q)Core(config-if)#switchport trunk encapsulation?

dot1q Interface uses only 802.1qtrunking encapsulation when trunkingisl Interface uses only ISL trunking

encapsulation when trunkingnegotiate Device will negotiatetrunking encapsulation with peer oninterface

Core(config-if)#switchport trunk encapsulationdot1qCore(config-if)#switchport mode trunk

C fi i I VLAN

8/11/2019 Sybex CCNA 640-802 Chapter 11

29/43

Configuring Inter-VLANrouting

Router(config)# interface fastethernet 0Router(config-if)# no ip addressRouter(config)# interface fastethernet 0/1.1Router(config-if)# encapsulation dot1q 1Router(config-if)# ip address 192.168.1.1 255.255.255.0Router(config-if)# interface fastethernet 0/1.10Router(config-if)# encapsulation dot1q 10Router(config-if)# ip address 192.168.2.1 255.255.255.0

8/11/2019 Sybex CCNA 640-802 Chapter 11

30/43

Configuring VTP

Switches are configured to beVTP servers by default.

8/11/2019 Sybex CCNA 640-802 Chapter 11

31/43

InterVLAN ConfigurationExample

8/11/2019 Sybex CCNA 640-802 Chapter 11

32/43

Example 2

8/11/2019 Sybex CCNA 640-802 Chapter 11

33/43

Example 3

8/11/2019 Sybex CCNA 640-802 Chapter 11

34/43

Example 4

8/11/2019 Sybex CCNA 640-802 Chapter 11

35/43

Configuring VTP

Switches are configured to beVTP servers by default.

8/11/2019 Sybex CCNA 640-802 Chapter 11

36/43

Configuring Switching ASample Internetwork

8/11/2019 Sybex CCNA 640-802 Chapter 11

37/43

2950C

8/11/2019 Sybex CCNA 640-802 Chapter 11

38/43

2950B

8/11/2019 Sybex CCNA 640-802 Chapter 11

39/43

Setting Up Trunking

8/11/2019 Sybex CCNA 640-802 Chapter 11

40/43

Inter-VLAN communication

8/11/2019 Sybex CCNA 640-802 Chapter 11

41/43

Telephony: Configuring VoiceVLANs

The voice VLAN feature enables access ports to carry IPvoice traffic from an IP phone

You can configure access ports on the switch to send CiscoDiscovery Protocol (CDP) packets that instruct an attachedCisco IP phone to send voice traffic to the switch inany of these ways:

In the voice VLAN tagged with a layer 2 CoS priority value In the access VLAN tagged with a layer 2 CoS priority

value

In the access VLAN, untagged (no layer 2 CoS priorityvalue)

8/11/2019 Sybex CCNA 640-802 Chapter 11

42/43

Configuring the Voice VLAN

Switch#configure tSwitch(config)#mls qosSwitch(config)#interface f0/1Switch(config-if)#switchport priority extend ?

cos Override 802.1p priority of devices on appliance

trust Trust 802.1p priorities of devices on applianceSwitch(config-if)#switchport priority extend trustSwitch(config-if)#mls qos trust cosSwitch(config-if)#switchport voice vlan dot1pSwitch(config-if)#switchport mode accessSwitch(config-if)#switchport access vlan 3Switch(config-if)#switchport voice vlan 1 0

8/11/2019 Sybex CCNA 640-802 Chapter 11

43/43

Written Labs and ReviewQuestions

Open your books and go through all thewritten labs and the review questions.

Review the answers in class.

43