User’s Manual of NS3550-24T/4S
109
(such as e-mail), or multicast groups (used for multimedia applications such as videoconferencing).
VLANs provide greater network efficiency by reducing broadcast traffic, and allow you to make network changes without having
to update IP addresses or IP subnets. VLANs inherently provide a high level of network security since traffic must pass through a
configured Layer 3 link to reach a different VLAN.
This Managed Switch supports the following VLAN features:
Up to 255 VLANs based on the IEEE 802.1Q standard
Distributed VLAN learning across multiple switches using explicit or implicit tagging and GVRP protocol
Port overlapping, allowing a port to participate in multiple VLANs
End stations can belong to multiple VLANs
Passing traffic between VLAN-aware and VLAN-unaware devices
Priority tagging
■
IEEE 802.1Q Standard
IEEE 802.1Q (tagged) VLAN
are implemented on the Switch. 802.1Q VLAN require tagging, which enables them to span the
entire network (assuming all switches on the network are IEEE 802.1Q-compliant).
VLAN allow a network to be segmented in order to reduce the size of broadcast domains. All packets entering a VLAN will only be
forwarded to the stations (over IEEE 802.1Q enabled switches) that are members of that VLAN, and this includes broadcast,
multicast and unicast packets from unknown sources.
VLAN can also provide a level of security to your network. IEEE 802.1Q VLAN will only deliver packets between stations that are
members of the VLAN. Any port can be configured as either
tagging
or
untagging
.:
The untagging feature of IEEE 802.1Q VLAN allows VLAN to work with legacy switches that don't recognize VLAN tags in
packet headers.
The tagging feature allows VLAN to span multiple 802.1Q-compliant switches through a single physical connection and
allows Spanning Tree to be enabled on all ports and work normally.
Some relevant terms:
-
Tagging
- The act of putting 802.1Q VLAN information into the header of a packet.
-
Untagging
- The act of stripping 802.1Q VLAN information out of the packet header.
■
802.1Q VLAN Tags
The figure below shows the 802.1Q VLAN tag. There are four additional octets inserted after the source MAC address. Their
presence is indicated by a value of
0x8100
in the Ether Type field. When a packet's Ether Type field is equal to 0x8100, the
packet carries the IEEE 802.1Q/802.1p tag. The tag is contained in the following two octets and consists of 3 bits of user priority,
1 bit of Canonical Format Identifier (CFI - used for encapsulating Token Ring packets so they can be carried across Ethernet
backbones), and 12 bits of
VLAN ID (VID)
. The 3 bits of user priority are used by 802.1p. The VID is the VLAN identifier and is
used by the 802.1Q standard. Because the VID is 12 bits long, 4094 unique VLAN can be identified.
Содержание IFS NS3550-24T/4S
Страница 1: ...P N 1072569 REV 00 05 ISS 11OCT12 IFS NS3550 24T 4S User Manual ...
Страница 37: ...User s Manual of NS3550 24T 4S 37 ...
Страница 96: ...96 Figure 4 4 6 Port Mirror Configuration Page Screenshot ...
Страница 127: ...User s Manual of NS3550 24T 4S 127 Figure 4 6 10 Port 1 Port 6 VLAN Configuration ...
Страница 151: ...User s Manual of NS3550 24T 4S 151 Figure 4 8 1 Multicast Service Figure 4 8 2 Multicast Flooding ...
Страница 184: ...184 Figure 4 9 14 Voice VLAN Configuration Page Screenshot ...
Страница 204: ...204 Figure 4 11 4 Network Access Server Configuration Page Screenshot ...
Страница 234: ...234 Figure 4 12 1 Port Limit Control Configuration Overview Page Screenshot ...
Страница 250: ...250 Click to undo any changes made locally and revert to previously saved values ...
Страница 297: ...User s Manual of NS3550 24T 4S 297 ...
Страница 388: ...388 Example Show RADIUS statistics SWITCH security aaa statistics ...
Страница 410: ...410 Parameters vid VLAN ID 1 4095 Default Setting disable ...
Страница 441: ...User s Manual of NS3550 24T 4S 441 Example Enable the mirror mode for port 1 4 SWITCH mirror mode 1 4 enable ...