Write From Yangwj

Sunday, March 9, 2014

One 、 Vlan The identification of

1. The switch port is the access port , It belongs to one of them Vlan; If it's a relay port , It can belong to all Vlan.

2. Different types of links in interactive networks

a) Access port : It can only belong to one Vlan, It can only carry one Vlan Of traffic .

b) Relay port : You can make a single port carry multiple Vlan Of traffic .

3. Access port traffic : Traffic is only accepted and sent in native format , No Vlan The tag . If an access port receives a marked packet , That will be discarded . If an unmarked packet is received , So what's on this port Vlan Mark . reason : The access port does not look at the source mac Address , All marked traffic can only be forwarded and accepted by the relay port .

4. Relay port traffic : Received a message , To determine if there is VLAN Information : If not, port it PVID, And exchange and forward , If there's a judgment to make trunk Whether the port allows the VLAN Data access to : Forward if possible , Or throw it away . Compare port PVID And the VLAN Information , If the two are equal, strip VLAN Information , Send again , If it's not equal, send it directly

Two 、 Frame marker

working principle : First, the switch that receives the frame needs to identify the Vlan ID, Then look at the information in the filter table , You know how to process frames ; If the interactive machine has another relay link , Frames are always forwarded here . Once the frame arrives by forwarding / The filter table determines 、 With the frame of Vlan The exit of the matching access link , The switch will be deleted Vlan identification . such , The destination device can receive the frame , There's no need to understand their Vlan identification .

This machine (Native)Vlan: For all unmarked traffic going through Vlan, The relay port will be assigned a default port Vlan ID(PVID), The default is Vlan 1 , But it can be changed to any Vlan Number .

3、 ... and 、 Vlan The recognition method of the image quality

1. IEEE802.1Q

principle : First specify that you are going to use 802.1Q Encapsulation to implement each port of the relay , The port must be assigned a specific Vlan ID, Make them local Vlan, So that they can communicate .

2. Inter switch links (inter-Switch Link,LSL)

First, it's a way of explicitly marking on Ethernet frames VLAN Method of information , Through an external packaging method , This tagging information allows VLAN Multiplexing on the relay link , This allows the switch to identify the frame on the relay link VLAN member relationship .

Four 、 VLAN Relay protocol (VTP)

Basic goal : Cross switched Internet management all configured VLAN, also 、 Maintaining consistency on that network .VTP Allow administrators to VLAN Add 、 Delete and rename , And spread that information to VTP On all other switches in the domain .

VTP The benefits of :

ü On all switches in the network VLAN Consistency of configuration

ü allow VLAN Implementing relay links in hybrid networks , Such as Ethernet to ATM LANE or FDDI

ü VLAN Accurate tracking and monitoring of

ü Add the VLAN Dynamic report to VTP All switches in the domain

ü add to VLAN Plug and play when using

( One ) VTP Operation mode of

The server : This is the default mode ,VLAN The configuration is saved in NVRAM in .

The client : Receiving information from the server , It sends and receives updates , But no change .

transparent : The switch is not involved in VTP Domain work , It is not shared with other switches VLAN database , But they will still be forwarded over any configured relay link VTP notice .

( Two ) VTP trim

principle :VTP Provides a way to save bandwidth , It's by configuring it to reduce the broadcast 、 The number of multicast and unicast packets . Can be pruned effectively VLAN yes 2——1001, And the ones that can't be pruned VLAN Will receive a lot of traffic .

Enable pruning :

ü Enter global configuration mode :config t

ü Enter interface configuration mode :inter f0/1

ü Configure pruning :switchport trunk pruning vlan 3-4

5、 ... and 、 Basic experiments

VLAN Basic configuration

Experimental Topology

ü All of the PC According to the above planning address configuration

ü It's divided into three VLAN, They correspond to the PC

ü Ignore the router for now , They are for the following VLAN It's prepared for routing

a) To configure VLAN

1. All before configuration PC Belong to a VLAN in , That is, in the same broadcast domain , So you can communicate at will

2. To configure S3(VLAN Divide )

3. Assign the corresponding port to VLAN in

4. see S3 VLAN Information

5. To configure S2 And S3、S2 And S4、S4 And S5 The link between them is in relay mode

S3 Configuration on

S2 Configuration on

S4 Configuration on

S5 Configuration on

6. To configure S5( Configuration is the same as S3)

7. View separately S3 and S5 Of VLAN Whether the information is configured correctly

see S5

see S3

8. Now let's PC2 And PC5 signal communication

9. PC2 And PC3 and PC6 signal communication

PC2 And PC3

PC2 And PC6 signal communication

10. PC3 And PC6 Can communicate normally

11. take PC3 Of ip Change it to, And try and PC4 signal communication

Why can we communicate like this ?( Look at the exploration experiment )

b) VLAN Routing between
1) Single arm routing

The topology is as follows

Small instructions : Use here R1 Do one arm routing configuration experiment , Borrow the above configuration VLAN, Complete this experiment . In the above experiments PC No gateway is specified , So here you need to add , And this address is encapsulated in the sub interface of the router 802.1Q Of .

1. To configure S2 The port connecting the router is in relay mode

2. Configure router sub interface and IP Data such as , also no shutdown

3. Give Way PC Communicate with each other

PC1 and PC0

PC0 and PC2 signal communication

PC1 and PC2 signal communication

The same goes for the rest , All of them can communicate with each other , This is one arm routing . The advantage is that you can save ports , The disadvantage is that a broken line will lead to multiple VLAN Communication between .

2) Multi arm routing

Experimental Topology

Small instructions : This experiment does multi arm routing , So it will R1 Remove or close the interface , Avoid affecting the experiment . among R2 Three lines are connected , Connect to S2 perhaps S4 It's the same effect , But it is generally recommended to connect to the same switch .

1. To configure R2 Of F0/1 Interface

2. To configure R2 Of F0/0 Interface

3. To configure R2 Of E1/0 Interface

4. View configuration information

5. The router is connected to the line corresponding to the VLAN in

see S2

see S4

Actually S4 You don't have to configure it , Because the default belongs to VLAN1

see S3

6. Give Way PC Communicate with each other

PC1 and PC2

PC2 and PC3

PC3 and PC0

PC2 and PC0

7. Each switch vlan The information is as follows





8. R2 Information about

Routing information

Interface information

Finally, I hope you can use the simulation mode in the experiment PDU, This will help you better understand the encapsulation and de encapsulation process of network packets , Secondly, it can make you deeply understand VLAN perhaps STP And so on . It's not a bad thing to have problems , Escape is a bad thing .

6、 ... and 、 Exploration experiment

A. Exercise one

Experimental Topology

Cerebellar activity period : According to the picture , We can skillfully configure its network , But that's the premise, not the point . Before you configure the network structure in the topology , Can you get such a clear result :PC A、PC B、PC C、PC D Is there anything you can communicate with each other ?

1. Check out the configured Switch0 Of VLAN Information

2. The same goes for Switch1

3. Give Way PC A And PC D signal communication

B. Exercise 2

Experimental Topology

Cerebellar action time : The configuration is simple , So see the picture above , What do you think of ? adopt VLAN Learning from , We can definitely know ,A and C It's communicable .

1. see S1

2. see S2

3. Give Way A And C signal communication

C. Practice three

Experimental Topology

The cerebellum is very special : Topology is conceived , Command configuration is simple , What do you think of in the picture above ? You'd better think for yourself here , The answer remains in the later implementation .

1. see S1

2. see S2

3. Give Way B and C signal communication

D. Exercise four

Experimental Topology

Leisure time : I believe that by the end of exercise four, you will have mastered VLAN Related knowledge , The focus of this four experiments is to enable you to have a deeper understanding of the impact of relay port and access port on whether there is a label VLAN The acceptance of information / Forward or discard . Understand the process , In order to make better use of VLAN; Maybe a little careful people will find such a problem : Different VLAN They can communicate with each other without using the third layer devices , Isn't it a little incredible ? At least I don't think so , Every technology can actually create a lot of miraculous effects , As long as you're willing to go deep into it , Study carefully , Keep thinking about , A small point will play out the maximum efficiency . You can't study too hard , I can't live too much , It's about persistence .

The above is just a simple exercise , I hope you can use it in a large network . You can also use VLAN Principle , Think of more similar exercises .

In this exercise A You can talk to D signal communication

Learning customs

Learning technology can't be too boring , Technology can't be too boring .

Learning is deep but living , Knowledge is rich, but it must be refined .

VLAN More related articles in the series

  1. Cisco SG300 Series switch division VLan Connection configuration with normal router

    Cisco SG300 Series three layer switch is a product designed for small and medium-sized enterprises ,Marvell Master and 128M Ram, The biggest support 52 A gigabyte RJ45 Port and 2 individual SFP port , Because of the company's business needs , Recently, we have also carried out understanding and configuration , The specific model is SG ...

  2. OpenvSwitch Series six vlan Isolation

    LAN games represent : Red Alert Open vSwitch One of series Open vSwitch Be born Open vSwitch The second series Install the specified version ovs Open vSwitch Series three  ovs-vsctl command ...

  3. Hengtian cloud technology sharing series 6 – vLan Analysis of network principle

    Reprinted from the official website of hengtianyun :http://www.hengtianyun.com/download-show-id-15.html Vlan The advantages of the network model Increase network scalability Network isolation , Each tenant has its own network and vl ...

  4. Hengtian cloud technology sharing series 2 - vlan management GUI Development

    Heng Tianyun :http://www.hengtianyun.com/download-show-id-10.html stay OpenStack G In the version quantum In network mode ,horizon Provides the basis for quan ...

  5. Network basic knowledge series : This paper VLAN and Trunk

    Network performance is an important factor affecting the efficiency of network . Large broadcast domain segmentation method , Designed to improve network performance . On an interface , But , The router LAN The number of interfaces is limited , Its main function is to transmit data between networks , Instead of providing network access to terminal devices . Visit LAN The function of the system is also ...

  6. Network equipment configuration and management ( Huawei ) Foundation Series :VLAN Troubleshooting and GVRP

    One .VLAN Troubleshooting Three steps for troubleshooting : Fault location → Analyze faults → Troubleshooting In general , There are two troubleshooting methods for network device configuration A. Static troubleshooting : Mainly by display How to view configuration information In relation to vlan Next d ...

  7. Huawei S5700 The series switch configuration is implemented by flow strategy VLAN There are three layers of isolation between them

    Networking graph chart 1  Configuration is implemented by stream policy VLAN There are three layers of isolation network diagram Networking requirements As shown in Figure 1 , For the security of communication , A company will visit . staff . The servers are divided into VLAN10.VLAN20.VLAN30 in . Company hopes : staff . clothing ...

  8. Pit filling series : adopt ESXi To configure the IPMI

    The weather in Xi'an is very good recently , However, it's depressing to see that the host migrated from other places can't debug remotely in the new environment , It's a pit to fill , Or you'll dig a bigger hole for the latecomers . The pit I met today is in IPMI It's enabled in your network settings VLAN After tag , In the new environment ...

  9. Python Black hat programming 3.4 stride across VLAN

    Python Black hat programming 3.4  Cross domain VLAN VLAN(Virtual Local Area Network), It's a virtual network based on Ethernet interactive technology , The same physical network can be divided into multiple VALN, It can also span Physics ...

Random recommendation

  1. [CentOS] solve crontab Unable to read environment variables

    Reference material :http://blog.slogra.com/post-238.html 1. Problem description A period of data processing shell Program , stay shell Run manually in , It can be executed correctly . however , Put it on cron ...

  2. bash Learning notes

    shell: An interface that can operate an application is called shell. Linux from C Compiling . TAB The use of keys alias: Set alias

  3. All around NSIS The operation of

    NSIS It's really a good installation software . The new version 2.0a7 It really realizes Chinese support and support WinXP Installation dialog box for . But to use it to achieve a beautiful installation interface and perfect installation function, you must write a good script . and NSIS Script instructions for ...

  4. 【JavsScript】 Reprint --- How to be a good front end

    . Do a good job at the front end About leaving How to be a good front end Book recommendation Blog recommendation Source code reading To interview 14 Annual plan Recruitment information . Before April , sluggish . I can't describe myself better without hesitation , There was a complete awakening on the way , So I found myself more diligent ...

  5. php Laravel frame Introduction and installation

    Laravel It's a set of simplicity . elegant PHP Web Development framework (PHP Web Framework). It frees you from spaghetti like code : It can help you build a perfect network APP, And every line of code can be concise . Rich in ...

  6. poj 2481 Cows( Array of numbers or Line segment tree )

    The question : For two intervals ,[si,ei] and [sj,ej], if si <= sj and ei >= ej and ei - si > ej - sj Then the interval [si,ei] Than [ ...

  7. Android Programming to get the phone's IMEI

    When mobile phones are in production , Each phone has a unique logo (ID), International mobile device identification code is adopted internationally (IMEI, International Mobile Equipment Identity).IMEI By 15 Digit composition ...

  8. Spark Storage system of source code reading -- Overview of storage system and shuffle service

    One . summary according to < In depth understanding of Spark: Core idea and source code analysis > A Book , Combine the latest spark Source code master Branch to read the source code , Add some understanding of the new version of the code , If there is a mistake , Wish to point out . 1. Block Manager B ...

  9. JQuery when() done() then()

    jQuery.when(deferreds) Parameters deferreds, One or more delay objects or JS object , We initially think of it as one or more asynchronous requests . for example :$.when($.ajax("page1. ...

  10. TCP/UDP The debugger SocketToolV4.1

    TCP/UDP Socket Debugging tools provide TCP Server,TCP Client,UDP Server,UDP Client,UDP Group Five kinds Socket Commissioning plan .SocketTool V ...