General discussion

Locked

Setting up a VLAN

By joeella ·
I have several machines on a LAN, I would like to segment some of them out so that they can comunicate with each other without going out to the entire network. What special properties do I need to look for when selecting a switch?

This conversation is currently closed to new comments.

9 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

Setting up a VLAN

by McKayTech In reply to Setting up a VLAN

Primarily you'll just need to get a managed switch that supports the number of VLANS that you need. It will also make some difference whether all the users to be segmented will be on the same switch or whether the VLANs will extend across switches.

At my place, we use the Cisco 2924 switches and have been very pleased with their capabilities, including the capacity to VLAN.

paul

Collapse -

Setting up a VLAN

by joeella In reply to Setting up a VLAN

The question was auto-closed by TechRepublic

Collapse -

Setting up a VLAN

by Mike-C In reply to Setting up a VLAN

The feauture you want is the ability to create VLANs. All this means is that you can assign ports on the same physical switch to be in different TCP/IP networks. Most switches have this feature. Do not forget once you put ports into a different network you still must connect those seperate networks with a router. This can be an external router with two ethernet ports. Each interface of the router would be cabled into a one port of each of the 2 vlans. The router could even be a simple Windows NT box with 2 NIcs and IP fowarding enabled. It gets expensive when you want to have many vlans in the same physical switch. This is usually implemented with a switch that has a built in Route Switch module. This is a processor that will route betweenall of the Vlans and therefore has to provide numerous logical interfaces . If all you want is 2 vlans check cisco or nortel as even thier lowest priced switches have this feature as standard. Then just build yourself an NT dual nic router. Here isan example: You have a 24 port switch. you want ports 1-10 to be on network 200.200.10.0 and the other 14 to be on network 200.200.11.0. You would telnet or console into your switch, create the VLANs accordingly and then assign the ports as above. Next you would give each of the 2 interfaces of your router an IP address in one of the Vlans. Say 200.200.10.2 and the other router interface 200.200.11.2. Then attache a cable from each router interface into a port in the corresponding VLAN. Hope I helped

Collapse -

Setting up a VLAN

by joeella In reply to Setting up a VLAN

The question was auto-closed by TechRepublic

Collapse -

Setting up a VLAN

by lomex In reply to Setting up a VLAN

Standard Solution:

Use a Layer 3 switch (Cisco catalyst 2900's, 3500's). This will subnet and VLAN your network .

Cheaper Solution:
Use a cheaper layer 2 switch.
Place your workgroup in one ehternet
segment and block the mac addresses in the
switch so it will not pass through the other
side.


Others
Use a different subnet for the sets of the computers you want to be a group that can comunicate to contrast it from the rest.

Collapse -

Setting up a VLAN

by joeella In reply to Setting up a VLAN

The question was auto-closed by TechRepublic

Collapse -

Setting up a VLAN

by stargen In reply to Setting up a VLAN

Hi,

Please find more information.

Do you want to create group or segment your network. You're right use VLAN.

Do you want each group to reach and share some servers or ressources.
=>use trunk VLAN 802.1Q for cheaper solution.But you servers must be equiped of Network card with trunk 802.1Q option

Do you want to autorize some stations in each VLAN to commmunicate together directly or share real time applications.
=> you need to implement level 3 switching
Be careful CISCO CATALYST2900 and 3500 series are not layer 3 switch.
Use new switch : WS-C3550 series or WS-C2948GL3 or use WS-G4908 GL3 wired speed.

Do you want to protect and avoid stations in the same VLAN to communicate together but share same ressource ( school classrom, design or research center )
=>use private VLAN
CISCO Catalyst 3500 is preconised
In this way to will spare IP adress and class.

Do you want to avoid some station to go to another VLAN through the ressources server ?
=>use private edge VLAN
Only available in news switch 3500, 3550, 2950 and catalyt 6000 series

Bye !

Collapse -

Setting up a VLAN

by joeella In reply to Setting up a VLAN

The question was auto-closed by TechRepublic

Collapse -

Setting up a VLAN

by joeella In reply to Setting up a VLAN

This question was auto closed due to inactivity

Back to Networks Forum
9 total posts (Page 1 of 1)  

Related Discussions

Related Forums