VLAN

From Noah.org
Revision as of 02:16, 21 March 2014 by Root (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search
  • VLANs segregate subnets, but subnets are not securely isolated.
  • VLANs make provisioning, routing subnets easier.
  • VLANs make moving physical subnets easier. They can maintain their virtual topology, but be physically relocated.
  • VLANs can be created at the layer 2 level (based on MAC addresses) which is simpler but can't cross switches.
  • VLANs can be created at the layer 3 level (based on IEEE 802.1q packet tagging) which allows more flexible routing over dumb switches.

basic vlan setup

vconfig add bond0 250
ifconfig vlan250 0.0.0.0 up
brctl addif brn vlan250
ip addr 0.0.0.0 dev brn
# ip addr del 10.181.250.141 dev brn