VLAN stuff

VLAN stuff
NewsGroups | Search | Tools
User Password
Register Now! Lost Password?
 alt.certification.cisco  Post an article  get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content  add this group's latest topics to your Google content  YahooMyWeb Yahoo!  Google Google  Windows Live Favorites Windows Live  del.icio.us del.icio.us  digg digg  Add to Netscape Netscape
Subject Author Date
VLAN stuff Christo 05-03-2006
Posted by Christo on May 3, 2006, 7:56 am
If you were  Registered and logged in, you could reply and use other advanced thread options


ok

if i have two VLANs

STUDENT
STAFF

and i have one router which has an APPLICATION SERVER attached to it

If i have one trunk link coming from the switch containing the VLANs to the
router

will both VLANs have access to the APPLICATION server via this trunk link?

I assume they will

however what if I do not want to allow any inter VLAN connectivity, will
they both be able to communicate over one trunk link with the APPLICATION
server connected to the router?



Posted by opensource on May 3, 2006, 11:45 am
If you were  Registered and logged in, you could reply and use other advanced thread options



It depends....You can control what vlan have access to what by assigning
a
dot1q or ISL layer 3 subinterace to the vlan. For example, if you only
wanted
and student and staff to have access to each other and the
application vlan to
be isolated your would configured your router as
suchs. Please note im assuming
the vlan 1 is staff, 2 is student, and 3
is app for this example.

interface FastEthernet0/0
no ip address
duplex full
!
interface FastEthernet0/0.1
description Staff VLAN
encapsulation isl 1
ip address x.x.x.x 255.255.255.0
no ip redirects
!
interface FastEthernet0/0.2
description Student VLAN
encapsulation isl 2
ip address x.x.x.x 255.255.255.0
no ip redirects

Let me know if you have any questions.


--
opensource
------------------------------------------------------------------------
opensource's Profile: http://www.CertificationChat.com/member.php?userid=67
View
this thread: http://www.CertificationChat.com/showthread.php?t=49471


Posted by Christo on May 3, 2006, 4:05 pm
If you were  Registered and logged in, you could reply and use other advanced thread options



>
> It depends....You can control what vlan have access to what by assigning
> a dot1q or ISL layer 3 subinterace to the vlan. For example, if you only
> wanted and student and staff to have access to each other and the
> application vlan to be isolated your would configured your router as
> suchs. Please note im assuming the vlan 1 is staff, 2 is student, and 3
> is app for this example.
>
> interface FastEthernet0/0
> no ip address
> duplex full
> !
> interface FastEthernet0/0.1
> description Staff VLAN
> encapsulation isl 1
> ip address x.x.x.x 255.255.255.0
> no ip redirects
> !
> interface FastEthernet0/0.2
> description Student VLAN
> encapsulation isl 2
> ip address x.x.x.x 255.255.255.0
> no ip redirects
>
> Let me know if you have any questions.
>
>

App isnt a VLAN it is just a single server connected to a interface on the
router

the switch is connected to another interface on the router via a trunk, this
switch has 2 vlans

STAFF
STUDENT

i dont want staff and student to be able to communicate with eachother

However i want them both to be able to access application which is a single
server connected to another interface on the router



Posted by opensource on May 3, 2006, 4:37 pm
If you were  Registered and logged in, you could reply and use other advanced thread options



The you can use the same configuration, just configure ACL's to control
the
traffic. Also, what may be easier is just putting two NIC cards in
the server
and connect them to each vlan.


--
opensource
------------------------------------------------------------------------
opensource's Profile: http://www.CertificationChat.com/member.php?userid=67
View
this thread: http://www.CertificationChat.com/showthread.php?t=49471


Posted by news_user on May 4, 2006, 6:12 pm
If you were  Registered and logged in, you could reply and use other advanced thread options


you ll need two acl s
> ok
>
> if i have two VLANs
>
> STUDENT
> STAFF
>
> and i have one router which has an APPLICATION SERVER attached to it
>
> If i have one trunk link coming from the switch containing the VLANs to
the
> router
>
> will both VLANs have access to the APPLICATION server via this trunk link?
>
> I assume they will
>
> however what if I do not want to allow any inter VLAN connectivity, will
> they both be able to communicate over one trunk link with the APPLICATION
> server connected to the router?
>
>



Similar ThreadsPosted
Do I have the right stuff May 2, 2007, 6:44 pm
w,V ***Hot stuff - check this out !!! w,V January 28, 2006, 12:37 pm
This stuff is getting challenging! September 25, 2008, 9:34 am
basic stuff, just a bit stuck May 10, 2005, 9:11 am
CCIE Stuff For Sale May 20, 2007, 7:39 am
rant: BCRAN obsolete async stuff July 19, 2006, 1:03 am
Testking.co.uk has added all new exams with real certification stuff June 10, 2005, 2:47 am
CCNA, CCNP & CCIE Stuff at throw away price July 14, 2007, 4:59 am
VLAN help November 21, 2005, 11:37 am
VLAN February 28, 2006, 10:03 pm

other useful resources:
The Federal Communications Commission (FCC)
Telecommunications Industry Association
Electronic and Software Security Products and Services
International Telecommunication Union

Custom CGI Perl and PHP programming by 1-Script.com

Contact Us | Privacy Policy
The site map in XML format XML site map