Vlans, Isolate traffic and users – Rockwell Automation 1783-Mxxx Stratix 8000 and 8300 Ethernet Managed Switches User Manual User Manual

Page 66

Advertising
background image

66

Rockwell Automation Publication 1783-UM003I-EN-P - March 2014

Chapter 3 Switch Software Features

VLANs

A virtual local-area network (VLAN) is a logical segment of network users and
resources grouped by function, team, or application. This segmentation is
without regard to the physical location of the users and resources. For example,
VLANs can be based on the departments in your company or by sets of users who
communicate mostly with each other.

The switch ships with a default VLAN to which each switch port initially
belongs. The switch supports a maximum of 255 VLANs, including the default
VLAN.

Every VLAN is identified by its name and ID number. The default VLAN is
named default. The ID can be from 1...1001 and 1005...4094, where 1 is the
default ID.

You can assign switch ports to either the default VLAN or to VLANs that you
have created. The default VLAN alone can be sufficient based on the size and
requirements of your network. We recommend that you first determine your
VLAN needs before creating VLANs.

The default VLAN is also the management VLAN. After the initial setup, you
can create VLANs and designate any VLAN on the switch as the management
VLAN. The management VLAN ensures administrative access to the switch.
You must assign one of the switch ports to the management VLAN; otherwise,
you do not have administrative access to the switch. Initially all ports are assigned
to the management VLAN.

You can assign all ports, regardless of their port role, to the default VLAN
(default).

Isolate Traffic and Users

By using VLANs, you can isolate different types of traffic, such as voice and data,
to preserve the quality of the transmission and to minimize excess traffic among
the logical segments. You can also use VLANs to isolate different types of users.
For example, you can restrict specific data broadcasts to logical workgroups for
security purposes, such as keeping information about employee salaries on devices
in a VLAN created for payroll-related communication.

VLANs can also reduce the amount of administrative effort required to
constantly examine requests to network resources.

VLANs isolate parts of your network. Therefore, devices that are attached to the
switch ports in the same VLAN (network users in the same VLAN) can
communicate only with each other and can share the same data.

Advertising
Popular Brands
Popular manuals