Compiled By : MISS KIRAN AYUB

1
 A virtual local area network is a group of
hosts with a common set of requirements
that communicate as if they were attached to
the same broadcast domain, regardless of
their physical location.

A VLAN is independent lan.

Compiled By:Miss Kiran Ayub 2

 VLANs logically segment switched networks
based on the functions, project teams, or
applications of the organization regardless of
the physical location or connections to the
network.
All workstations and servers used by a
particular workgroup share the same VLAN,
regardless of the physical connection or
location.
Configuration or reconfiguration of VLANs is
done through software.

Compiled By:Miss Kiran Ayub 3

 Physically connecting or moving cables and
equipment is unnecessary when configuring
VLANs
A workstation in a VLAN group is restricted to
communicating with file servers in the same
VLAN group.
VLANs function by logically segmenting the
network into different broadcast domains so
that packets are only switched between ports
that are designated for the same VLAN.

Compiled By:Miss Kiran Ayub 4

 Each switch port could be assigned to a different VLAN.
Ports assigned to the same VLAN share broadcasts.
Ports that do not belong to that VLAN do not share these
broadcasts.
This improves the overall performance of the network
Static membership VLANs are called port-based and port-
centric membership VLANs.
As a device enters the network, it automatically assumes
the VLAN membership of the port to which it is attached
The default VLAN for every port in the switch is the
management VLAN.
The management VLAN is always VLAN 1 and may not be
deleted.
All other ports on the switch may be reassigned to
alternate VLAN
VLANs offer more bandwidth to users than a shared
network.

Compiled By:Miss Kiran Ayub 5

 The key benefit of VLANs is that they permit the
network administrator to organize the LAN logically
instead of physically. This means that an administrator
is able to do all of the following:
Easily move workstations on the LAN.
Easily add workstations to the LAN.
Easily change the LAN configuration.
Easily control network traffic.
Improve security.

Compiled By:Miss Kiran Ayub 6

Static VLAN
Static VLAN works with port numbers.
Administrator manually add ports numbers in
the VLAN.
Configuration is easy to setup and monitor

Compiled By:Miss Kiran Ayub 7

Dynamic VLAN:
Dynamic VLAN works with MAC address
Administrator adds only MAC address in
VLAN
By using VMPS(VLAN management policy
server)dynamic VLAN will work
VMPS contains MAC Address and respective
VLAN number,

Compiled By:Miss Kiran Ayub 8

Compiled By:Miss Kiran Ayub 9
 A VLAN is a broadcast domain created by one or more switches
Figure shows how three separate broadcast domains are
created using three separate switches.
Layer 3 routing allows the router to send packets to the three
different broadcast domains.

Compiled By:Miss Kiran Ayub 10

 In Figure , a VLAN is created using one router and one
switch. However, there are three separate broadcast
domains.
three separate broadcast domains are created. The router
routes traffic between the VLANs using Layer 3 routing.

Compiled By:Miss Kiran Ayub 11

 It is switching technology
Logically group user
Segmenting Broadcast domain
Access control
VLAN is a logical broadcast domain
QOS(quality of services)=IP Phone
Ease of management Troubleshooting

Compiled By:Miss Kiran Ayub 12

 1 Access links
Connecting to end devices(hosts or router)
part of one VLAN
2 Trunk links
Do not belong to VLAN
Carry multiple VLANs traffic
Link between two switches.
3 Hybird link
can carry both tagged and untagged frames

Compiled By:Miss Kiran Ayub 13

ISL (Inter-Switch Link)
Its a Cisco proprietary
Its works with Ethernet,Token
ring,FDDI
It adds 30 bytes of tag
All VLAN traffic is tagged
IEEE 802.1Q
Open standard
It works only on Ethernet
Only 4 Byte tag will be added
to original frame
Compiled By:Miss Kiran Ayub 14
 LAN emulation (LANE) is a way to make an Asynchronous
Transfer Mode (ATM) network simulate an Ethernet network.
There is no tagging in LANE, but the virtual connection used
implies a VLAN ID.
As packets are received by the switch from any attached end-
station device, a unique packet identifier is added within each
header.
This header information designates the VLAN membership of
each packet.
The packet is then forwarded to the appropriate switches or
routers based on the VLAN identifier and MAC address.
Upon reaching the destination node the VLAN ID is removed
from the packet by the adjacent switch and forwarded to the
attached device.
Packet tagging provides a mechanism for controlling the flow of
broadcasts and applications while not interfering with the
network and applications.

Compiled By:Miss Kiran Ayub 15

DM SM 4 Bytes Tag Ethernet Frame FCS

3 Bit PRI VLAN

Cisco Term Trunk

Destination Mac address
Source Mac address

Compiled By:Miss Kiran Ayub 16

NEW METHOD OLD METHOD

Switch>enable Switch>enable
Switch#conf t Switch#vlan database
Switch(config)#vlan <ID> Switch(vlan)#vlan <ID> name < vlan
Switch(config-vlan)#name < vlan name>
name>

Compiled By:Miss Kiran Ayub 17

 Switch>enable
Switch#conf t
Switch(config)#vlan 20
Switch(config-vlan)#name IT

Compiled By:Miss Kiran Ayub 18

 Switch>enable
Switch#vlan database
% Warning: It is recommended to configure
VLAN from config mode,as VLAN database mode
is being deprecated. Please consult user
documentation for configuring VTP/VLAN in
config mode.

Switch(vlan)#vlan 30 name HR
VLAN 30 added:
Name: HR

Compiled By:Miss Kiran Ayub 19

 Switch#conf t
Enter configuration commands, one per line.
End with CNTL/Z.
Switch(config)#
Switch(config)#int fa 0/3
Switch(config-if)#switchport mode access
Switch(config-if)#switchport access vlan 30
30 is vlan number

Compiled By:Miss Kiran Ayub 20

 Switch#conf t
Enter configuration commands, one per line.
End with CNTL/Z.
Switch(config)#
Switch(config)#int range fa 0/1-2
Switch(config-if-range)#switchport mode
access
Switch(config-if-range)#switchport access
vlan 20

20 is vlan ID/number

Compiled By:Miss Kiran Ayub 21

 A good practice is to verify VLAN configuration
by using the show vlan, show vlan brief, or show
vlan id id_number commands.
When a VLAN is deleted any ports assigned to
that VLAN become inactive. The ports will,
however, remain associated with the deleted
VLAN until assigned to a new VLAN.
The following facts apply to VLANs:
A created VLAN remains unused until it is mapped to
switch ports.
All Ethernet ports are on VLAN 1 by default.

Compiled By:Miss Kiran Ayub 22

 Switch>en
Switch#conf t
Switch(config)#int fa0/5
Switch(config-if)#switchport mode trunk
Fa0/5 (fastEthernet 0/5 is port number)

Compiled By:Miss Kiran Ayub 23

After assigning the IP add to the PCs
Step 1:
click on the switch and create VLANs
assign ports to the VLAN
Step 2:
Make a Trunk Link
Step 3:
click on the Router and write the following
commands

Compiled By:Miss Kiran Ayub 24

 Switch>en
Switch#conf t
Switch(config)#vlan 20
Switch(config-vlan)#name hr
Switch(config-vlan)#vlan 30
Switch(config-vlan)#name it
Switch(config-vlan)#exit
Switch(config)#int ra fa0/1-2
Switch(config-if-range)#switchport access vlan 20
Switch(config-if-range)#int ra fa0/3-4
Switch(config-if-range)#switchport access vlan 30
Switch(config-if-range)#do show vlan

Compiled By:Miss Kiran Ayub 25

 Switch(config)#int fa 0/5
Switch(config-if)#switchport mode trunk
Switch(config-if)#no shutdown

Compiled By:Miss Kiran Ayub 26

Click on the Router and write the following
commands:

Router(config-subif)#int fa0/0.1
Router(config-subif)#encapsulation dot1q 20
Router(config-subif)#ip address 192.168.1.1
255.255.255.0
Router(config-subif)#exit

Router(config)#int fa0/0.2
Router(config-subif)#encapsulation dot1q 30
Router(config-subif)#ip address 192.168.2.1
255.255.255.0

Compiled By:Miss Kiran Ayub 27

Also called legacy vlan. After assigning the IP add to the PCs
Click on the SWITCH
Switch>en
Switch#conf t
Switch(config)#vlan 20
Switch(config-vlan)#name hr
Switch(config-vlan)#vlan 30
Switch(config-vlan)#name it
Switch(config-vlan)#exit
Switch(config)#int ra fa0/1-2
Switch(config-if-range)#switchport mode access
Switch(config-if-range)#switchport access vlan 20
Switch(config-if-range)#exit
Switch(config)#int ra fa0/3-4
Switch(config-if-range)#switchport access vlan 30

Compiled By:Miss Kiran Ayub 28

Assign Vlan ports to vlan
Switch(config-if)#int fa0/5
Switch(config-if)#switchport access vlan 20
Switch(config-if)#int fa0/6
Switch(config-if)#switchport access vlan 30

Compiled By:Miss Kiran Ayub 29

Click on the router
Router(config-if)#int fa0/0
Router(config-if)#no shutdown
Router(config-if)#int fa0/0
Router(config-if)#ip address 192.168.1.100
255.255.255.0
Router(config-if)#exit
Router(config)#int fa0/1
Router(config-if)#no shutdown
Router(config-if)#
%LINK-5-CHANGED: Interface FastEthernet0/1,
changed state to up

Compiled By:Miss Kiran Ayub 30

Router(config-if)#int fa0/1
Router(config-if)#no shutdown
Router(config-if)#int fa0/1
Router(config-if)#ip address 192.168.2.100 255.255.255.0
Router(config-if)#no shutdown

Compiled By:Miss Kiran Ayub 31