Download - Modul 9 - Vlan
![Page 1: Modul 9 - Vlan](https://reader033.vdocuments.site/reader033/viewer/2022061513/553ec2984a79591d108b45e5/html5/thumbnails/1.jpg)
1
VLAN Virtual LAN
Isbat Uzzin N
Politeknik Elektronika Negeri Surabaya – ITS, Surabaya
![Page 2: Modul 9 - Vlan](https://reader033.vdocuments.site/reader033/viewer/2022061513/553ec2984a79591d108b45e5/html5/thumbnails/2.jpg)
2
Definisi VLAN Pemisahan jaringan secara logis yang
dilakukan pada switch
Pada tradisional switch, dalam satu switch menunjukkan satu segmentasi LAN dengan satu broadcast domain
Dengan adanya VLAN dimungkinkan satu switch bisa dibangun beberapa segmen jaringan dengan beberapa broadcast domain, dibentuk dengan bantuan software di switch
VLAN terbentuk secara logik dengan bantuan software yang ada pada switch
![Page 3: Modul 9 - Vlan](https://reader033.vdocuments.site/reader033/viewer/2022061513/553ec2984a79591d108b45e5/html5/thumbnails/3.jpg)
3
Manfaat VLAN
Tanpa VLAN untuk membangun 3 jaringan membutuhkan 3 switch
Dengan menggunkan VLAN untuk membangun 3 jaringan hanya membutuhkan 1 switch
1) Without VLANs
2) With VLANs
10.0.0.0/8
10.1.0.0/16
10.2.0.0/16
10.3.0.0/16
10.2.0.0/16
10.3.0.0/16
![Page 4: Modul 9 - Vlan](https://reader033.vdocuments.site/reader033/viewer/2022061513/553ec2984a79591d108b45e5/html5/thumbnails/4.jpg)
4
No VLANs Sam e as a s ingle VLAN Two Subnets
Sw itch 1172.30.1.21
255.255.255.0
172.30.2.10255.255.255.0
172.30.1.23255.255.255.0
172.30.2.12255.255.255.0
• Without VLANs, the ARP Request would be seen by all hosts.
• Again, consuming unnecessary network bandwidth and host processing cycles.
ARP Request
Without VLANs – No Broadcast Control
![Page 5: Modul 9 - Vlan](https://reader033.vdocuments.site/reader033/viewer/2022061513/553ec2984a79591d108b45e5/html5/thumbnails/5.jpg)
5
Tw o VLANs Two S ubnets
Sw itch 1172.30.1.21
255.255.255.0VLAN 1
172.30.2.10255.255.255.0
VLAN 2
172.30.1.23255.255.255.0
VLAN 1
172.30.2.12255.255.255.0
VLAN 2
Switch Port: VLAN IDARP Request
With VLANs – Broadcast Control
1 2 3 4 5 6 .1 2 1 2 2 1 .
PortVLAN
![Page 6: Modul 9 - Vlan](https://reader033.vdocuments.site/reader033/viewer/2022061513/553ec2984a79591d108b45e5/html5/thumbnails/6.jpg)
6
VLAN operation
Tw o VLANs Two S ubnets
Sw itch 1172.30.1.21
255.255.255.0VLAN 1
172.30.2.10255.255.255.0
VLAN 2
172.30.1.23255.255.255.0
VLAN 1
172.30.2.12255.255.255.0
VLAN 2
Important notes on VLANs:
1. VLANs are assigned on the switch port. There is no “VLAN” assignment done on the host (usually).
2. In order for a host to be a part of that VLAN, it must be assigned an IP address that belongs to the proper subnet.
Remember: VLAN = Subnet
1 2 3 4 5 6 .1 2 1 2 2 1 .
PortVLAN
.
![Page 7: Modul 9 - Vlan](https://reader033.vdocuments.site/reader033/viewer/2022061513/553ec2984a79591d108b45e5/html5/thumbnails/7.jpg)
7
Creating VLANs
Untuk setipa switch bangun definisi VLAN
S1(config)#vlan 10
S1(config-vlan)#name faculty/staff
S1(config-vlan)#vlan 20
S1(config-vlan)#name student
KOnfigurasi masing-masing interface ke spesifik vlan
Switch(config)#interface fastethernet 0/9
Switch(config-if)#switchport mode access
Switch(config-if)#switchport access vlan 10
.
vlan 10
Default vlan 1
Default vlan 1
![Page 8: Modul 9 - Vlan](https://reader033.vdocuments.site/reader033/viewer/2022061513/553ec2984a79591d108b45e5/html5/thumbnails/8.jpg)
8
Configuring Ranges of VLANs
SydneySwitch(config)#interface fastethernet 0/5
SydneySwitch(config-if)#switchport access vlan 2
SydneySwitch(config-if)#exit
SydneySwitch(config)#interface fastethernet 0/6
SydneySwitch(config-if)#switchport access vlan 2
SydneySwitch(config-if)#exit
SydneySwitch(config)#interface fastethernet 0/7
SydneySwitch(config-if)#switchport access vlan 2
vlan 2
.
![Page 9: Modul 9 - Vlan](https://reader033.vdocuments.site/reader033/viewer/2022061513/553ec2984a79591d108b45e5/html5/thumbnails/9.jpg)
9
Configuring Ranges of VLANs
SydneySwitch(config)#interface range fastethernet 0/8, fastethernet 0/12
SydneySwitch(config-if)#switchport access vlan 3
SydneySwitch(config-if)#exit
This command does not work on all 2900 switches, such as the 2900 Series XL. It does work on the 2950.
vlan 3
.
![Page 10: Modul 9 - Vlan](https://reader033.vdocuments.site/reader033/viewer/2022061513/553ec2984a79591d108b45e5/html5/thumbnails/10.jpg)
10
Verifying VLANs – show vlan
vlan 3vlan 2vlan 1 default
.
![Page 11: Modul 9 - Vlan](https://reader033.vdocuments.site/reader033/viewer/2022061513/553ec2984a79591d108b45e5/html5/thumbnails/11.jpg)
11
Verifying VLANs – show vlan brief
vlan 3vlan 2vlan 1 default
.
![Page 12: Modul 9 - Vlan](https://reader033.vdocuments.site/reader033/viewer/2022061513/553ec2984a79591d108b45e5/html5/thumbnails/12.jpg)
12
Deleting VLANs
Switch(config-if)#no switchport access vlan vlan_number
.
![Page 13: Modul 9 - Vlan](https://reader033.vdocuments.site/reader033/viewer/2022061513/553ec2984a79591d108b45e5/html5/thumbnails/13.jpg)
13
VLAN Tagging
There are two major methods of frame tagging, Cisco proprietary Inter-Switch Link (ISL) and IEEE 802.1Q.
ISL used to be the most common, but is now being replaced by 802.1Q frame tagging.
Cisco recommends using 802.1Q.
VLAN Tagging and Trunking will be discussed in the next chapter.
802.10
.
![Page 14: Modul 9 - Vlan](https://reader033.vdocuments.site/reader033/viewer/2022061513/553ec2984a79591d108b45e5/html5/thumbnails/14.jpg)
14
VLAN Tagging
Terdapat satu VLAN yang berfungsi sebagai jalur komunikasi antar VLAN dan diset no IP
Terdapat satu interface yang difungsikan sebagai jalur komunikasi antar VLAN dan diset no IP
![Page 15: Modul 9 - Vlan](https://reader033.vdocuments.site/reader033/viewer/2022061513/553ec2984a79591d108b45e5/html5/thumbnails/15.jpg)
15
InterVLAN routing
Merupakan konsep VLAN tagging yang diterapkan di router
Pada Router, Dipersiapkan interface yang menerima komunikasi antar VLAN :
– Dibangun sub interface untuk default gateway dan
– sub interface untuk komunikasi antar VLAN , aktifkan mode trunk
Pada SwitchTerdapat Switch sbg VTP Server– Bangun interface ke router, aktifkan mode
trunk– Bangun Interface ke switch vtp client,
aktifkan mode trunkTerdapat switch sbg VTP Client
Bangun interface ke switch VTP Server activekan mode trunk
![Page 16: Modul 9 - Vlan](https://reader033.vdocuments.site/reader033/viewer/2022061513/553ec2984a79591d108b45e5/html5/thumbnails/16.jpg)
16
InterVLAN Routing
Pada Router
![Page 17: Modul 9 - Vlan](https://reader033.vdocuments.site/reader033/viewer/2022061513/553ec2984a79591d108b45e5/html5/thumbnails/17.jpg)
17
InterVLAN Routing Pada Switch VTP Server
![Page 18: Modul 9 - Vlan](https://reader033.vdocuments.site/reader033/viewer/2022061513/553ec2984a79591d108b45e5/html5/thumbnails/18.jpg)
18
InterVLAN Routing
Pada switch vtp client
![Page 19: Modul 9 - Vlan](https://reader033.vdocuments.site/reader033/viewer/2022061513/553ec2984a79591d108b45e5/html5/thumbnails/19.jpg)
19
EEPIS Network
![Page 20: Modul 9 - Vlan](https://reader033.vdocuments.site/reader033/viewer/2022061513/553ec2984a79591d108b45e5/html5/thumbnails/20.jpg)
20
VLAN COnfiguration