User's Manual
Table Of Contents
- Contents
- Figures
- Preface
- Chapter 1
- AlliedWare Plus™ Version 2.1.2 Web Browser Interface
- Chapter 2
- Starting a Management Session
- Chapter 3
- Basic Switch Parameters
- Setting the System Date and Time
- Setting a Telnet or SSH Server
- Setting a Remote Log Server
- Setting the Switch Information
- Setting the Configuration File
- Managing User Accounts
- Rebooting a Switch
- Upgrading the Software
- Returning the AlliedWare Plus Management Software to the Factory Default Values
- Displaying System Information
- Chapter 4
- Setting Port Parameters
- Chapter 5
- Setting Port Statistics
- Chapter 6
- Setting Port Mirroring
- Chapter 7
- Setting the Port Spanning Tree Protocol
- Chapter 8
- Setting the MAC Address
- Chapter 9
- Setting LACP
- Chapter 10
- Setting Static Port Trunks
- Chapter 11
- Setting Port-based and Tagged VLANs
- Chapter 12
- Setting Switch Spanning Tree Protocols
- Chapter 13
- Setting Internet Group Management Protocol (IGMP) Snooping
- Chapter 14
- Setting MAC Address-based Port Security
- Chapter 15
- Setting RADIUS and TACACS+ Clients
- Chapter 16
- Setting 802.1x Port-based Network Access
- Chapter 17
- Setting IPv4 and IPv6 Management
- Chapter 18
- Setting LLDP and LLDP-MED
- Chapter 19
- Setting sFlow
Chapter 11: Setting Port-based and Tagged VLANs
128
Overview
A VLAN is a group of ports that form a logical Ethernet segment on an
Ethernet switch. The ports of a VLAN form an independent traffic domain
in which the traffic generated by the nodes remains within the VLAN.
VLANs let you segment your network through the switch’s management
software so that you can group nodes with related functions into their own
separate, logical LAN segments. These VLAN groupings can be based on
similar data needs or security requirements. For example, you could
create separate VLANs for the different departments in your company,
such as one for Sales and another for Accounting. Both port-based and
tagged VLANs are supported in the web interface.
Port-based
VLANs
A port-based VLAN is a group of ports on a Gigabit Ethernet Switch that
form a logical Ethernet segment. Each port of a port-based VLAN can
belong to only one VLAN at a time. A port-based VLAN can have as many
or as few ports as needed. The VLAN can consist of all the ports on an
Ethernet switch, or just a few ports. In addition, a port-based VLAN can
span switches and consist of ports from multiple Ethernet switches.
Ports in a port-based VLAN are referred to as untagged ports and the
frames received on the ports as untagged frames. The names derive from
the fact that the frames received on a port do not contain any information
that indicates VLAN membership, and that VLAN membership is
determined solely by a port’s PVID.
Port VLAN Identifier
Each port in a port-based VLAN must have a port VLAN identifier (PVID).
The switch associates a frame to a port-based VLAN by the PVID
assigned to a port on which a frame is received, and forwards a frame only
to those ports with the same PVID. Consequently, all ports of a port-based
VLAN must have the same PVID. In addition, the PVID of the ports in
a VLAN must match the VLAN’s VID.
For example, if you create a port-based VLAN on the switch and assign it
the VID 5, the PVID for each port in the VLAN needs to be assigned the
value of 5.
Tagged VLANs The second type of VLAN is the tagged VLAN. VLAN membership in a
tagged VLAN is determined by information within the frames that are
received on a port. This differs from a port-based VLAN, where the PVIDs
assigned to the ports determine VLAN membership.