Configuring vlans, Overview, Vlan fundamentals – H3C Technologies H3C WX5500E Series Access Controllers User Manual
Page 128
118
Configuring VLANs
Overview
Ethernet is a network technology based on the CSMA/CD mechanism. As the medium is shared,
collisions and excessive broadcasts are common on an Ethernet. To address the issue, virtual LAN (VLAN)
was introduced to break a LAN down into separate VLANs. VLANs are isolated from each other at Layer
2. A VLAN is a bridging domain, and all broadcast traffic is contained within it, as shown in
.
Figure 120 A VLAN diagram
A VLAN is logically divided on an organizational basis rather than on a physical basis. For example, all
workstations and servers used by a particular workgroup can be assigned to the same VLAN, regardless
of their physical locations.
VLAN technology delivers the following benefits:
•
Confines broadcast traffic within individual VLANs. This reduces bandwidth waste and improves
network performance.
•
Improves LAN security. By assigning user groups to different VLANs, you can isolate them at Layer
2. To enable communication between VLANs, routers or Layer 3 switches are required.
•
Creates flexible virtual workgroup. As users from the same workgroup can be assigned to the same
VLAN regardless of their physical locations, network construction and maintenance is much easier
and more flexible.
VLAN fundamentals
To enable a network device to identify frames of different VLANs, a VLAN tag field is inserted into the
data link layer encapsulation. The format of VLAN-tagged frames is defined in IEEE 802.1Q-1999.
In the header of a traditional Ethernet data frame, the field after the destination MAC address and the
source MAC address is the Type field indicating the upper layer protocol type, as shown in