Isolate-User-VLAN

By Vikas Bagwe -

Network Diagram

Figure 5 Network diagram for isolate-user-VLAN configuration

Network Requirements

Device B and Device C are located in two independent networks, each device configured with VLANs as required. Due to network design changes, you are required to use Device A to interconnect Device B and Device C. When doing that, consider the following:



For security sake, devices attached to Device B should not communicate directly with devices attached to Device C. However, because the VLANs on Device B and Device C overlap, Host A and Host C will be in the same VLAN after the network design changes, which can result in safety problems, as shown in Figure 5. To address the problem, you can use the isolate-user-VLAN function to make VLAN 2 and VLAN 3 on Device B and VLAN 3 and VLAN 4 on Device C become locally significant. On Device A, use VLAN 5 and VLAN 6 to isolate the two networks, without having to consider their respective internal VLAN configurations.



Configure VLAN interfaces on Device A for forwarding packets between the two networks at Layer 3.

Configuration Example

Configuration on Device B
#
vlan 2 to 3
#
vlan 5
 isolate-user-vlan enable
#
interface GigabitEthernet2/0/1
 port link-type hybrid
 undo port hybrid vlan 1
 port hybrid vlan 3 5 untagged
 port hybrid pvid vlan 3
#
interface GigabitEthernet2/0/2
 port link-type hybrid
 undo port hybrid vlan 1
 port hybrid vlan 2 5 untagged
 port hybrid pvid vlan 2
#
interface GigabitEthernet2/0/5
 port link-type hybrid
 undo port hybrid vlan 1
 port hybrid vlan 2 3 5 untagged
 port hybrid pvid vlan 5
#
isolate-user-vlan 5 secondary 2 3

Configuration on Device C
#
vlan 3 to 4
#
vlan 6
 isolate-user-vlan enable
#
interface GigabitEthernet2/0/3
 port link-type hybrid
 undo port hybrid vlan 1
 port hybrid vlan 3 6 untagged
 port hybrid pvid vlan 3
#
interface GigabitEthernet2/0/4
 port link-type hybrid
 undo port hybrid vlan 1
 port hybrid vlan 4 6 untagged
 port hybrid pvid vlan 4
#
interface GigabitEthernet2/0/5
 port link-type hybrid
 undo port hybrid vlan 1
 port hybrid vlan 3 4 6 untagged
 port hybrid pvid vlan 6
#
isolate-user-vlan 50 secondary 2 3

Configuration on Device A
#
vlan 5 to 6
#
interface Vlan-interface 5
 ip address 192.168.0.1 255.255.255.0
#
interface Vlan-interface 6
 ip address 192.168.1.1 255.255.255.0
#
interface GigabitEthernet2/0/1
 port access vlan 5
#
interface GigabitEthernet2/0/2
 port access vlan 6

You might also like:

SATTA KING
free online proxy list pro
mixads
EBB Series economical bending beam Load Cell CAL-TEDS Plug & Play Smart load cell option is a AD9 connector with EEPROM attached to cable
Visit our website for more info.

NYC Car Service and Limousine Service in New York to JFK, LGA, EWR, LaGuardia and Newark Airport NJ

Comments

Post a Comment

Popular posts from this blog

How To Add Print Button to Blogger Posts

By -
This tutorial explains how to add a small print button below the post titles to print It is really necessary to Add Print Button to Blogger Posts, if there were any visitors or viewers want to print one or more posts in a blog. Like this below : Click Here to See the Example  (scroll at the end of post to find printer button icon) How to Add Print Button to Blogger Posts ? ... First Step 1. Go to Dashboard, click Design, click Edit HTML 2. Click Expand Widget Templates 3. Find code of HTML below : </head> you can use (Ctrl+F) to find easily
Read more

INSTALL CISCO VPN CLIENT ON WINDOWS 10 (32 & 64 BIT). FIX REASON 442

By -
Image
This article shows how correctly install Cisco VPN Client (32 & 64 bit) on Windows 10 (32 & 64 bit) using simple steps, overcome the ‘ This app can’t run on this PC ’ installation error , plus fix the Reason 442: Failed to enable Virtual Adapter error message . The article applies to New Windows 10 installations or Upgrades from earlier Windows versions and all versions before or after Windows 10 build 1511 .  To simplify the article, we’ve broken it into the following two sections: How to Install Cisco VPN client on Windows 10 (clean installation or upgrade from previous Windows), including Windows 10 build prior or after build 1511 . How to Fix Reason 442: Failed to enable Virtual Adapter on Windows 10 Figure 1. The Cisco VPN Client Reason 442: Failed to enable Virtual Adapter error on Windows 10 HOW TO INSTALL CISCO VPN CLIENT ON WINDOWS 10 (NEW INSTALLATIONS OR O/S UPGRADES) The instructions below are for new or clean Windows 10 installa
Read more