
VES-1000 Series Ethernet Switch
VLAN
8-1
Chapter 8
VLAN
This chapter explains how to configure VLANs on the VES.
8.1 VLAN Overview
A VLAN (Virtual Local Area Network) allows a physical network to be partitioned into multiple logical networks.
Stations on a logical network belong to one group. A station can belong to more than one group. With VLAN, a
station cannot directly talk to or hear from stations that are not in the same group(s); the traffic must first go
through a router.
In MTU applications, VLAN is vital in providing isolation and security among the subscribers. When properly
configured, VLAN prevents one subscriber from accessing the network resources of another on the same LAN,
thus a user will not see the printers and hard disks of another user in the same building.
VLANs also increase network performance by limiting broadcasts to a smaller and more manageable logical
broadcast domain. In traditional switched environments, all broadcast packets go to each and every individual
port. With VLAN, all broadcasts are confined to a specific broadcast domain.
Note that VLANs are unidirectional- they only govern outgoing traffic.
8.2 Port-based VLANS
Port-based VLANs are VLANs where the packet forwarding decision is based on the destination MAC address
and its associated port.
As previously mentioned, VLANs are unidirectional. Therefore, if you wish to allow two subscriber ports to talk
to each other, for example, between conference rooms in a hotel, you must define the egress (an egress port is an
outgoing port, that is, a port through which a data packet leaves) for both ports.
Port-based VLANs are specific only to the switch on which they were created. The factory default port-based
VLAN settings for VES-1000 Series switches are summarized below.
•
Port 0 (the CPU management port) forms a VLAN with uplink ports and can use all Ethernet ports as the
uplink.
•
The VDSL ports cannot talk to each other.
•
Each VDSL port forms a VLAN with the Ethernet ports and vice-versa.
8.3 Tagged VLANs (IEEE 802.1Q)
Tagged VLAN uses an explicit tag (VLAN ID) in the MAC header to identify the VLAN membership of a frame
across bridges - tagged VLANs are not confined to the switch on which they were created. The VLANs can be
created statically by hand or dynamically through GVRP. The VLAN ID associates a frame with a specific VLAN
and provides the information that switches need to process the frame across the network. A tagged frame is four
Summary of Contents for VES-1000 Series
Page 1: ...VES 1000 Series VDSL Ethernet Switches Version 3 41 May 2004 User s Guide...
Page 20: ......
Page 32: ......
Page 50: ......
Page 64: ......
Page 72: ......
Page 74: ......
Page 78: ......
Page 100: ......
Page 104: ......
Page 106: ......
Page 112: ......
Page 120: ......
Page 128: ......
Page 130: ......
Page 142: ......
Page 176: ......
Page 178: ......
Page 206: ......
Page 210: ......
Page 216: ......