Polymerization VLAN (VLAN Aggregation, also known as Super VLAN) means within a physical network, with a plurality of VLAN (referred to as a Sub-VLAN) broadcast domain, and these Sub-VLAN aggregated into a logical VLAN (referred Super- VLAN ), these Sub-VLANs use the same IP subnet and default gateway, so as to save IP address resources.
A super VLAN cannot contain physical interfaces (that is, it cannot be divided into a physical interface). It needs to create a three-layer VLAN if interface to realize inter-sub VLAN and external communication. However, there is one difference: the if interface of the ordinary VLAN is directly up, and the physical interface of the VLAN is up, and the vlan if interface is up; and the if interface of the super VLAN is still up, and then the physical interface of the sub VLAN is up. The super vlan itself does not contain physical interfaces. The IP network segment of all sub VLANs is the same IP network segment as the super VLAN, sharing an IP gateway, which greatly reduces the waste of idle IP address resources. 3 configuration process
Configuration
1. After constructing the topology map as described above, and marking the IP planning information, the next step is to configure the PCIP address, gateway information, and device name.
PC1 configuration is as follows: (beginner's other PC, Server reference is as follows, here will not demonstrate one by one)
Configure the IP address of the upstream port of SW1, modify the device name, and create VLAN 200:
[Huawei]sys SW1
[SW1]VLAN 200
[SW1-vlan200]
[SW1]INT VLAN 200
[SW1-Vlanif200]ip add 20.1.1.2 24
[SW1-Vlanif200]
[SW1]INT G0/0/4
[SW1-GigabitEthernet0/0/4]port link-type access
[SW1-GigabitEthernet0/0/4]port default vlan 200
[SW1-GigabitEthernet0/0/4]QU
<Huawei>sys
Enter system view, return user view with Ctrl+Z.
[Huawei]sys R1
[R1]INT G0/0/0
[R1-GigabitEthernet0/0/0]ip add 20.1.1.1 24
[R1-GigabitEthernet0/0/0]
[R1]int g0/0/1
[R1-GigabitEthernet0/0/1]ip add 12.1.1.1 24
Ping the router on the connectivity of the directly connected IP:
For more learning materials for net workers, to obtain certification-related learning content, you can add q: 696283186
2. Configure 3 access switches, modify the default device name, create VLANs, divide access interfaces, and configure trunk with the Layer 3 switch. (The access switch is the same as the normal VLAN configuration in the past. The key configuration of supervlan is on the three-layer switch. )SW2 configuration:
[HUAWEI]SYS SW2
[SW2]
[SW2]int e0/0/1
[SW2-Ethernet0/0/1]port link-type trunk
[SW2-Ethernet0/0/1]port trunk allow-pass vlan 10
[SW2]int e0/0/2
[SW2-Ethernet0/0/2]port link-type type
[SW2-Ethernet0/0/2]port default vlan 10
[SW2-Ethernet0/0/2]qu
[HUAWEI]SYS SW3
[SW3]
[SW3] int e0 / 0/1
[SW3-Ethernet0/0/1]port link-type trunk
[SW3-Ethernet0/0/1]port trunk allow-pass vlan 20
[SW3] int e0 / 0/2
[SW3-Ethernet0/0/2]port link-type type
[SW3-Ethernet0/0/2]port default vlan 20
[SW3-Ethernet0/0/2]qu
[HUAWEI]SYS SW4
[SW4]
[SW4]int e0/0/1
[SW4-Ethernet0/0/1]port link-type trunk
[SW4-Ethernet0/0/1]port trunk allow-pass vlan 30
[SW4]int e0/0/2
[SW4-Ethernet0/0/2]port link-type type
[SW4-Ethernet0/0/2]port default vlan 30
[SW4-Ethernet0/0/2]qu
[SW1]vlan 10
[SW1-vlan10]qu
[SW1]vlan 20
[SW1-vlan20]qu
[SW1]vlan 30
[SW1-vlan30]qu
[SW1]vlan 100 //此vlan100作为super VLAN,属于物理接口。
[SW1-vlan100]qu
[SW1]
三层交换机SW1与接入层交换机互联接口配置trunk,放行sub vlan:
[SW1]int g0/0/1
[SW1-GigabitEthernet0/0/1] port link-type trunk
[SW1-GigabitEthernet0/0/1] port trunk allow-pass vlan 10 20 30
[SW1-GigabitEthernet0/0/1]qu
[SW1]int g0/0/2[SW1-GigabitEthernet0/0/2] port link-type trunk
[SW1-GigabitEthernet0/0/2] port trunk allow-pass vlan 10 20 30
[SW1-GigabitEthernet0/0/2]qu
[SW1]int g0/0/3
[SW1-GigabitEthernet0/0/3] port link-type trunk
[SW1-GigabitEthernet0/0/3] port trunk allow-pass vlan 10 20 30
[SW1-GigabitEthernet0/0/3]
[SW1]vlan 100
[SW1-vlan100]aggregate-vlan //指定vlan 100为super vlan;
[SW1-vlan100]access-vlan 10 20 30 //指定vlan 10 20 30为sub vlan;
[SW1-vlan100]
[SW1-vlan100]qu
[SW1]int vlan 100
[SW1-Vlanif100]ip address 192.168.1.254 24
[SW1-Vlanif100]
[SW1]ip route-static 0.0.0.0 0.0.0.0 20.1.1.1
[SW1]
在R1配置静态路由:
[R1]ip route-static 192.168.1.0 255.255.255.0 20.1.1.2
更多网工学习资料,获取认证相关学习内容,可以加q:696283186
Next, let's try the communication between sub VLANs? For example, can PC1 ping PC2?
Amazing! The IP of the same network segment can't ping! It is normal if it fails. As we said earlier, sub VLAN is used to isolate the Layer 2 broadcast domain. What if you want them to communicate?
That is to open the proxy arp, as follows:
[SW1]int vlan 100
[SW1-Vlanif100]arp-proxy inter-sub-vlan-proxy enable
[SW1-Vlanif100]
P1 can also ping PC3:
PC2 can also ping PC3:
how about it? Are there any gains after reading it? In the follow-up, we will continue to share other cases of super VLAN, MUX VLAN, etc. For more learning materials for net workers, to obtain certification-related learning content, you can add q: 696283186