[Warm reminder] Need information or need to enter the group to communicate to the bottom
Definition of VLAN
VLAN is the abbreviation of English Virtual Local Area Network, also called virtual local area network. It is a technology that realizes virtual working group by dividing the devices in the local area network logically rather than physically into individual network segments. If you want to divide VLAN, you must purchase network equipment that supports VLAN function.
The role of VLAN division
VLAN is proposed to solve the broadcast problem and security of Ethernet. Broadcast and unicast traffic within a VLAN will not be forwarded to other VLANs. Even if two computers on the same network segment are not in the same VLAN, their respective broadcast streams will not be forwarded to each other.
Dividing VLAN helps to control traffic, reduce equipment investment, simplify network management, and improve network security. Because VLAN isolates the broadcast storm and also isolates the communication between different VLANs, the communication between different VLANs must rely on routers or Layer 3 switches to achieve.
VLAN division method
1. Divide VLAN according to port
2. Divide VLAN according to MAC address
3. Divide VLAN according to network layer
4. Divide VLAN according to IP multicast
Each division method has its advantages, but the functions used are the same. The most commonly used in work is to divide VLANs according to ports, which is also the simplest and must be mastered.
Application scenarios of VXLAN:
The application of VXLAN in virtual machine migration between cloud data centers. For example, an enterprise has virtual machines with different business applications in different data centers. Virtual machine migration between data centers is often encountered, in order to ensure virtual machine migration If the business is not interrupted during the process, it is necessary to ensure that the IP address, MAC address and other parameters of the migrated virtual machine remain unchanged. This requires that the virtual machine belongs to a unified Layer 2 network before and after the migration. If you use traditional methods to solve this problem, you may need to purchase new physical equipment to separate the traffic, and may cause problems such as VLAN chaos, network ringing, and system and management overhead.
In order to successfully realize the migration of virtual machines without business interruption, VXLAN technology can be used. VXLAN is a network virtualization technology of MAC in UDP. As long as the physical network supports IP forwarding, all end users with reachable IP routes can establish a large-scale Layer 2 network; configure VXLAN related information on the switch connected to the virtual machine. VXLAN tunnels and VXLAN gateways are established between the onboard switches. Through VXLAN tunnels and VXLAN gateways, virtual machines can be successfully migrated between different data centers, and it can ensure that the network is unaware and business is not interrupted during the virtual machine migration.
The application of VXLAN in the SDN environment. In the SDN environment, the corresponding relationship between the VXLAN IP and VID can be realized through the SDN controller. The SDN controller can be used as an ARP proxy device, which greatly improves the flexibility of VXLAN And scalability. Therefore, VXLAN technology can be widely used in the SDN environment.
VLAN routing-each VLAN has a physical connection experimental configuration:
1. Topological diagram
2. The purpose of the experiment:
Through configuration, communication can be carried out between the same VLAN and different VLANs under the three-layer switch.
3. Configuration ideas:
1) Configure IP address and gateway for each PC
2) Configure VLANIF for Layer 3 switch
4. Configuration process:
1. Layer 2 switch configuration (divide vlan: switch port 1-10 is assigned to vlan10, port 11-20 is assigned to vlan20; port 24 is set as the backbone link interface)
Switch(config)#vlan 10
Switch(config)#vlan 20
Switch(config)#int range f0/1-10
Switch(config-if-range)#switchport access vlan 10
Switch(config)#int range f0/11-20
Switch(config-if-range)#switchport access vlan 20
Switch(config)#int f0/24
Switch(config-if)#switchport mode trunk
2. Layer 3 switch configuration configuration (create vlan, set backbone link interface, set SVI interface address, enable routing function)
Switch(config)#ip routing#Enable the routing function of the three-layer switch
Switch(config)#vlan 10
Switch(config)#vlan 20
Switch(config)#int f0/24
Switch(config-if)#switchport trunk encapsulation dot1q
Switch (config-if)#switchport mode trunk
Switch(config)#int vlan 10#Create svi10
Switch(config-if)#ip address 192.168.10.254 255.255.255.0#Set the ip of SVI10, which is the gateway of vlan10
Switch(config )#int vlan 20#Create svi20
Switch(config-if)#ip address 192.168.20.254 255.255.255.0#Set the ip of SVI20, which is the gateway of vlan20
3. Configure PC (set IP, set gateway)
PC0 address setting, the host belongs to vlan10
PC1 address setting, the host belongs to vlan20
4. To test connectivity,
click here to receive learning materials
↑↑↑↑↑↑↑↑↑↑↑