Web Management Guide-R07
Table Of Contents
- How to Use This Guide
- Contents
- Figures
- Tables
- Getting Started
- Introduction
- Key Features
- Description of Software Features
- Configuration Backup and Restore
- Authentication
- Access Control Lists
- Port Configuration
- Rate Limiting
- Port Mirroring
- Port Trunking
- Storm Control
- Static MAC Addresses
- IP Address Filtering
- IEEE 802.1D Bridge
- Store-and-Forward Switching
- Spanning Tree Algorithm
- Virtual LANs
- IEEE 802.1Q Tunneling (QinQ)
- Traffic Prioritization
- Quality of Service
- IP Routing
- Address Resolution Protocol
- Multicast Filtering
- Link Layer Discovery Protocol
- System Defaults
- Introduction
- Web Configuration
- Using the Web Interface
- Basic Management Tasks
- Displaying System Information
- Displaying Hardware/Software Versions
- Configuring Support for Jumbo Frames
- Displaying Bridge Extension Capabilities
- Managing System Files
- Setting the System Clock
- Configuring the Console Port
- Configuring Telnet Settings
- Displaying CPU Utilization
- Configuring CPU Guard
- Displaying Memory Utilization
- Resetting the System
- Using Cloud Management
- Interface Configuration
- VLAN Configuration
- Address Table Settings
- Spanning Tree Algorithm
- Congestion Control
- Class of Service
- Quality of Service
- VoIP Traffic Configuration
- Security Measures
- AAA (Authentication, Authorization and Accounting)
- Configuring User Accounts
- Web Authentication
- Network Access (MAC Address Authentication)
- Configuring HTTPS
- Configuring the Secure Shell
- Access Control Lists
- Filtering IP Addresses for Management Access
- Configuring Port Security
- Configuring 802.1X Port Authentication
- DoS Protection
- DHCP Snooping
- IPv4 Source Guard
- ARP Inspection
- Basic Administration Protocols
- Configuring Event Logging
- Link Layer Discovery Protocol
- Power over Ethernet
- Simple Network Management Protocol
- Configuring Global Settings for SNMP
- Setting the Local Engine ID
- Specifying a Remote Engine ID
- Setting SNMPv3 Views
- Configuring SNMPv3 Groups
- Setting Community Access Strings
- Configuring Local SNMPv3 Users
- Configuring Remote SNMPv3 Users
- Specifying Trap Managers
- Creating SNMP Notification Logs
- Showing SNMP Statistics
- Remote Monitoring
- Switch Clustering
- Setting a Time Range
- LBD Configuration
- Smart Pair Configuration
- Multicast Filtering
- Overview
- Layer 2 IGMP (Snooping and Query for IPv4)
- Configuring IGMP Snooping and Query Parameters
- Specifying Static Interfaces for a Multicast Router
- Assigning Interfaces to Multicast Services
- Setting IGMP Snooping Status per Interface
- Filtering IGMP Query Packets and Multicast Data
- Displaying Multicast Groups Discovered by IGMP Snooping
- Displaying IGMP Snooping Statistics
- Filtering and Throttling IGMP Groups
- MLD Snooping (Snooping and Query for IPv6)
- Filtering and Throttling MLD Groups
- Filtering MLD Query Packets on an Interface
- IP Tools
- IP Configuration
- General IP Routing
- Unicast Routing
- Overview
- Configuring the Routing Information Protocol
- Configuring General Protocol Settings
- Clearing Entries from the Routing Table
- Specifying Network Interfaces
- Specifying Passive Interfaces
- Specifying Static Neighbors
- Configuring Route Redistribution
- Specifying an Administrative Distance
- Configuring Network Interfaces for RIP
- Displaying RIP Interface Settings
- Displaying Peer Router Information
- Resetting RIP Statistics
- IP Services
- Appendices
- Glossary
Chapter 5
| VLAN Configuration
IEEE 802.1Q VLANs
– 153 –
Port Overlapping – Port overlapping can be used to allow access to commonly
shared network resources among different VLAN groups, such as file servers or
printers. Note that if you implement VLANs which do not overlap, but still need to
communicate, you can connect them by enabled routing on this switch.
Untagged VLANs – Untagged VLANs are typically used to reduce broadcast traffic
and to increase security. A group of network users assigned to a VLAN form a
broadcast domain that is separate from other VLANs configured on the switch.
Packets are forwarded only between ports that are designated for the same VLAN.
Untagged VLANs can be used to manually isolate user groups or subnets.
Forwarding Tagged/Untagged Frames
If you want to create a small port-based VLAN for devices attached directly to a
single switch, you can assign ports to the same untagged VLAN. However, to
participate in a VLAN group that crosses several switches, you should create a VLAN
for that group and enable tagging on all ports.
Ports can be assigned to multiple tagged or untagged VLANs. Each port on the
switch is therefore capable of passing tagged or untagged frames. When
forwarding a frame from this switch along a path that contains any VLAN-aware
devices, the switch should include VLAN tags. When forwarding a frame from this
switch along a path that does not contain any VLAN-aware devices (including the
destination host), the switch must first strip off the VLAN tag before forwarding the
frame. When the switch receives a tagged frame, it will pass this frame onto the
VLAN(s) indicated by the frame tag. However, when this switch receives an
untagged frame from a VLAN-unaware device, it first decides where to forward the
frame, and then inserts a VLAN tag reflecting the ingress port’s default VID.
Configuring VLAN
Groups
Use the VLAN > Static (Add) page to create or remove VLAN groups, set
administrative status, or specify Remote VLAN type (see “Configuring Remote Port
Mirroring” on page 138). To propagate information about VLAN groups used on
this switch to external network devices, you must specify a VLAN ID for each of
these groups.
Parameters
These parameters are displayed:
Add
◆ VLAN ID – ID of VLAN or range of VLANs (1-4094).
VLAN 1 is the default untagged VLAN.
◆ Status – Enables or disables the specified VLAN.
◆ Remote VLAN – Reserves this VLAN for RSPAN (see “Configuring Remote Port
Mirroring” on page 138).