background image

If you plan to configure many VLANs on the switch and to not enable routing, you can set the Switch
Database Management (SDM) feature to the VLAN template, which configures system resources to
support the maximum number of unicast MAC addresses.

Switches running the LAN Base feature set support only static routing on SVIs.

A VLAN should be present in the switch to be able to add it to the VLAN group.

Restrictions for VLANs

The following are restrictions for VLANs:

The switch supports per-VLAN spanning-tree plus (PVST+) or rapid PVST+ with a maximum of 128
spanning-tree instances. One spanning-tree instance is allowed per VLAN.

The switch supports both Inter-Switch Link (ISL) and IEEE 802.1Q trunking methods for sending VLAN
traffic over Ethernet ports.

Configuring an interface VLAN router's MAC address is not supported. The interface VLAN already
has an MAC address assigned by default.

The number of VLANs mapped to a VLAN group is not limited by IOS. But if the number of VLANs
in a VLAN group exceed the recommended value of 128, the mobility can be unexpected. So it is the
responsibility of the administrator to configure feasible number of VLANs in a VLAN group. When a
WLAN is mapped to a VLAN group which has more number of VLANs, an error is generated.

The static IP client behavior is not supported.

Private VLANs are not supported on the switch.

Information About VLANs

Logical Networks

A VLAN is a switched network that is logically segmented by function, project team, or application, without
regard to the physical locations of the users. VLANs have the same attributes as physical LANs, but you can
group end stations even if they are not physically located on the same LAN segment. Any switch port can
belong to a VLAN, and unicast, broadcast, and multicast packets are forwarded and flooded only to end
stations in the VLAN. Each VLAN is considered a logical network, and packets destined for stations that do
not belong to the VLAN must be forwarded through a router or a switch supporting fallback bridging. In a
switch stack, VLANs can be formed with ports across the stack. Because a VLAN is considered a separate

   Consolidated Platform Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches)

2

OL-29322-01  

Configuring VLANs

Restrictions for VLANs

Summary of Contents for Catalist 3850 Series

Page 1: ...release notes for your platform and software release Use Cisco Feature Navigator to find information about platform support and Cisco software image support To access Cisco Feature Navigator go to http www cisco com go cfn An account on Cisco com is not required Related Topics Feature History and Information for Troubleshooting Software Configuration Prerequisites for VLANs The following are prere...

Page 2: ...the mobility can be unexpected So it is the responsibility of the administrator to configure feasible number of VLANs in a VLAN group When a WLAN is mapped to a VLAN group which has more number of VLANs an error is generated The static IP client behavior is not supported Private VLANs are not supported on the switch Information About VLANs Logical Networks A VLAN is a switched network that is logi...

Page 3: ... The switch supports VLANs in VTP client server and transparent modes VLANs are identified by a number from 1 to 4094 VLAN 1 is the default VLAN and is created during system initialization VLAN IDs 1002 through 1005 are reserved for Token Ring and FDDI VLANs All of the VLANs except 1002 to 1005 are available for user configuration There are 3 VTP versions VTP version 1 and version 2 support only n...

Page 4: ...oring VLANs on page 26 Creating an Extended Range VLAN on page 20 Creating an Extended Range VLAN with an Internal VLAN ID on page 23 Monitoring VLANs on page 26 Creating or Modifying an Ethernet VLAN on page 11 Deleting a VLAN on page 14 Assigning Static Access Ports to a VLAN on page 17 Monitoring VLANs on page 26 Creating an Extended Range VLAN on page 20 Creating an Extended Range VLAN with an...

Page 5: ...MembershipCharacteristics Membership Mode VTP is not required If you do not want VTP to globally propagate information set the VTP mode to transparent To participate in VTP there must be at least one trunk port on the switch or the switch stack connected to a trunk port of a second switch or switch stack A static access port can belong to one VLAN and is manually assigned to that VLAN Static acces...

Page 6: ...le and running configuration On some switches the vlan dat file is stored in flash memory on the active switch You use the interface configuration mode to define the port membership mode and to add and remove ports from VLANs The results of these commands are written to the running configuration file and you can display the file by entering the show running config privileged EXEC command When you ...

Page 7: ...AN configuration through VTP The switch supports 128 spanning tree instances If a switch has more active VLANs than supported spanning tree instances spanning tree can be enabled on 128 VLANs and is disabled on the remaining VLANs If you have already used all available spanning tree instances on a switch adding another VLAN anywhere in the VTP domain creates a VLAN on that switch that is not runni...

Page 8: ... on page 17 Monitoring VLANs on page 26 Creating or Modifying an Ethernet VLAN on page 11 Deleting a VLAN on page 14 Assigning Static Access Ports to a VLAN on page 17 Monitoring VLANs on page 26 Extended Range VLAN Configuration Guidelines VTP 3 only supports extended range VLANs Extended range VLANs are VLANs with IDs from 1006 to 4094 Follow these guidelines when creating extended range VLANs V...

Page 9: ...the whole stack uses the same running configuration and saved configuration and extended range VLAN information is shared across the stack Related Topics Creating an Extended Range VLAN on page 20 Creating an Extended Range VLAN with an Internal VLAN ID on page 23 Monitoring VLANs on page 26 Creating an Extended Range VLAN on page 20 Creating an Extended Range VLAN with an Internal VLAN ID on page...

Page 10: ...ress from the assigned VLAN This feature also extends the current AP group architecture and AAA override architecture where the AP groups and AAA override can override a VLAN or a VLAN group to which the WLAN is mapped Related Topics Creating VLAN groups CLI on page 16 How to Configure VLANs How to Configure Normal Range VLANs You can set these parameters when you create a new normal range VLAN or...

Page 11: ...ng media specific characteristics for VTP global advertisements to other switches Although the switch does not support Token Ring connections a remote device with Token Ring connections could be managed from one of the supported switches Switches running VTP Version 2 advertise information about these Token Ring VLANs Token Ring TrBRF VLANs Token Ring TrCRF VLANs SUMMARY STEPS 1 configure terminal...

Page 12: ...al VLAN configuration command options are available test20 are Sets the maximum number of All Router Explorer ARE hops for the VLAN backupcrf Enables or disables the backup concentrator relay function CRF mode for the VLAN bridge Sets the value of the bridge number for the FDDI net or Token Ring net type VLANs exit Applies changes bumps the revision number and exits media Sets the media type of th...

Page 13: ...SPAN VLAN for a remote SPAN session For more information on remote SPAN see the Catalyst 3850 Network Management Configuration Guide remote span Example Switch config vlan Step 6 remote span Returns to privileged EXEC mode end Example Switch config end Step 7 Verifies your entries show vlan name vlan name id vlan id Step 8 Example Switch show vlan name test20 id 20 Related Topics Supported VLANs o...

Page 14: ...eting a VLAN When you delete a VLAN from a switch that is in VTP server mode the VLAN is removed from the VLAN database for all switches in the VTP domain When you delete a VLAN from a switch that is in VTP transparent mode the VLAN is deleted only on that specific switch or a switch stack You cannot delete the default VLANs for the different media types Ethernet VLAN 1 and FDDI or Token Ring VLAN...

Page 15: ...age 3 Normal Range VLAN Configuration Guidelines on page 7 Monitoring VLANs on page 26 Supported VLANs on page 3 Normal Range VLAN Configuration Guidelines on page 7 Monitoring VLANs on page 26 Supported VLANs on page 3 Normal Range VLAN Configuration Guidelines on page 7 Monitoring VLANs on page 26 Monitoring VLANs on page 26 Supported VLANs on page 3 Normal Range VLAN Configuration Guidelines on...

Page 16: ...ommand mode configure terminal Example Switch configure terminal Step 1 Creates a VLAN group with the given group name and adds all the VLANs listed in the command The recommended number of VLANs in a group is 32 vlan group groupname vlan list 1 256 Example Switch vlan group vlangrp1 vlan list 91 95 Step 2 Exits the global configuration mode Alternatively press CTRL Z to exit the global configurat...

Page 17: ...1 Step 3 Exits the global configuration mode Alternatively press CTRL Z to exit the global configuration mode end Example Switch config wlan end Step 4 Assigning Static Access Ports to a VLAN You can assign a static access port to a VLAN without having VTP globally propagate VLAN configuration information by disabling VTP VTP transparent mode For more information on static access ports see VLAN Po...

Page 18: ... 2 Defines the VLAN membership mode for the port Layer 2 access port switchport mode access Example Switch config if switchport mode access Step 3 Assigns the port to a VLAN Valid VLAN IDs are 1 to 4094 switchport access vlan vlan id Example Switch config if switchport access vlan 2 Step 4 Returns to privileged EXEC mode end Example Switch config if end Step 5 Verifies the VLAN membership mode of ...

Page 19: ... Range VLAN Configuration Guidelines on page 7 Monitoring VLANs on page 26 Supported VLANs on page 3 Normal Range VLAN Configuration Guidelines on page 7 Monitoring VLANs on page 26 Supported VLANs on page 3 Normal Range VLAN Configuration Guidelines on page 7 Monitoring VLANs on page 26 Supported VLANs on page 3 Normal Range VLAN Configuration Guidelines on page 7 Monitoring VLANs on page 26 How ...

Page 20: ...e switch is not in VTP transparent mode an error message is generated when you exit VLAN configuration mode and the extended range VLAN is not created Before you create an extended range VLAN you can verify that the VLAN ID is not used internally by entering the show vlan internal usage privileged EXEC command SUMMARY STEPS 1 configure terminal 2 vtp mode transparent 3 vlan vlan id 4 remote span 5...

Page 21: ...erface vlan Step 7 Example Switch config interface vlan 200 Switch config if Optional Modifies the VLAN by changing the MTU size You can configure the MTU size between 68 to 1500 bytes ip mtu mtu size Example Switch config if ip mtu 1024 Step 8 Although all VLAN commands appear in the CLI help only the ip mtu mtu size private vlan and remote span commands are supported for extended range VLANs Not...

Page 22: ... Supported VLANs on page 3 Extended Range VLAN Configuration Guidelines on page 8 Monitoring VLANs on page 26 Supported VLANs on page 3 Extended Range VLAN Configuration Guidelines on page 8 Monitoring VLANs on page 26 Extended Range VLAN Configuration Guidelines on page 8 Monitoring VLANs on page 26 Supported VLANs on page 3 Extended Range VLAN Configuration Guidelines on page 8 Monitoring VLANs ...

Page 23: ...ETAILED STEPS Purpose Command or Action Displays the VLAN IDs being used internally by the switch If the VLAN ID that you want to use is an internal VLAN the display show vlan internal usage Example Switch show vlan internal usage Step 1 shows the routed port that is using the VLAN ID Enter that port number in Step 3 Enters global configuration mode configure terminal Example Switch configure term...

Page 24: ...ig vlan vlan 2000 Step 7 Exits from VLAN configuration mode and return to global configuration mode exit Example Switch config vlan exit Step 8 Specifies the interface ID for the routed port that you shut down in Step 4 and enter interface configuration mode interface interface id Example Switch config interface Step 9 gigabitethernet1 0 3 Re enables the routed port It will be assigned a new inter...

Page 25: ...nes on page 8 Monitoring VLANs on page 26 Supported VLANs on page 3 Extended Range VLAN Configuration Guidelines on page 8 Monitoring VLANs on page 26 Supported VLANs on page 3 Extended Range VLAN Configuration Guidelines on page 8 Monitoring VLANs on page 26 Supported VLANs on page 3 Extended Range VLAN Configuration Guidelines on page 8 Monitoring VLANs on page 26 Supported VLANs on page 3 Exten...

Page 26: ...he connected VLANs that are available id Displays VTP VLAN status by identification number ifindex Displays SNMP ifIndex mtu Displays VLAN MTU information name Display the VTP VLAN information by specified name remote span Displays the remote SPAN VLANs summary Displays a summary of VLAN information show vlan access map name brief dot1q tag native filter access map vlan group group name name id vl...

Page 27: ...rted VLANs on page 3 Extended Range VLAN Configuration Guidelines on page 8 Creating an Extended Range VLAN on page 20 Creating an Extended Range VLAN with an Internal VLAN ID on page 23 Creating or Modifying an Ethernet VLAN on page 11 Normal Range VLAN Configuration Guidelines on page 7 Deleting a VLAN on page 14 Assigning Static Access Ports to a VLAN on page 17 Creating an Extended Range VLAN ...

Page 28: ...Creating an Extended Range VLAN with an Internal VLAN ID on page 23 Supported VLANs on page 3 Normal Range VLAN Configuration Guidelines on page 7 Creating or Modifying an Ethernet VLAN on page 11 Deleting a VLAN on page 14 Assigning Static Access Ports to a VLAN on page 17 Supported VLANs on page 3 Extended Range VLAN Configuration Guidelines on page 8 Creating an Extended Range VLAN on page 20 C...

Page 29: ...er events ifs Debugs VLAN manager ifs error tests management Debugs VLAN manager management of internal vlans mapping Debugs VLAN mapping notification Debugs VLAN manager notifications packets Debugs VLAN manager packets redundancy Debugs VTP VLAN redundancy registries Debugs VLAN manager registries vtp VTP protocol debugging debug sw vlan badpmcookies cfg vlan events ifs management mapping notifi...

Page 30: ...NetFlow Configuration Guide Cisco IOS XE Release 3SE Catalyst 3850 Switches Flexible Netflow Configuration Guide Cisco IOS XE Release 3SE Catalyst 3850 Switches Cisco Flexible NetFlow IP Multicast Command Reference Cisco IOS XE Release 3SE Catalyst 3850 Switches IP Multicast Routing Configuration Guide Cisco IOS XE Release 3SE Catalyst 3850 Switches IGMP Snooping Catalyst 3850 IPv6 Configuration G...

Page 31: ... at the following URL http www cisco com go mibs All supported MIBs for this release BRIDGE MIB RFC1493 CISCO BRIDGE EXT MIB CISCO CDP MIB CISCO PAGP MIB CISCO PRIVATE VLAN MIB CISCO LAG MIB CISCO L2L3 INTERFACE CONFIG MIB CISCO MAC NOTIFICATION MIB CISCO STP EXTENSIONS MIB CISCO VLAN IFTABLE RELATIONSHIP MIB CISCO VLAN MEMBERSHIP MIB CISCO VTP MIB IEEE8023 LAG MIB IF MIB RFC 1573 RMON MIB RFC 175...

Page 32: ...tools on the Cisco Support website requires a Cisco com user ID and password Feature Information for VLANs Table 4 Feature Information for VLANs Feature Information Releases Feature Name The switch supports VLANs in VTP client server and transparent modes VLANs are identified by a number from 1 to 4094 VLAN 1 is the default VLAN and is created during system initialization VLAN IDs 1002 through 100...

Reviews: