Configuring VLANs. Understanding VLANs

Similar documents
Configuring VLANs CHAPTER

Configuring VLANs CHAPTER

Configuring Spanning Tree Protocol

Configuring the WMIC for the First Time

Hot Standby Access Points

8 VLANs. 8.1 Introduction. 8.2 vlans. Unit 8: VLANs 1

Routing Between VLANs Overview

Configuring WEP and WEP Features

The following steps should be used when configuring a VLAN on the EdgeXOS platform:

Configuring a Wireless LAN Connection

Configuring Multiple SSIDs

Configuring Cipher Suites and WEP

Configuring the Access Point/Bridge for the First Time

Configuring Repeater and Standby Access Points and Workgroup Bridge Mode

Routing Between VLANs Overview

VLANs over IP Unnumbered SubInterfaces

C H A P T E R Overview Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL

Configuring Repeater and Standby Access Points and Workgroup Bridge Mode

Configuring a Basic Wireless LAN Connection

Securing a Wireless LAN

Configuring Repeater and Standby Access Points

Configuring Multiple Basic Service Set Identifiers and Microsoft WPS IE SSIDL

Numerics INDEX. 2.4-GHz WMIC, contrasted with 4.9-GHz WMIC g 3-6, x authentication 4-13

Configuring IP Unnumbered on IEEE 802.1Q VLANs

Configuring IEEE 802.1Q and Layer 2 Protocol Tunneling

Configuring IEEE 802.1Q Tunneling and Layer 2 Protocol Tunneling

Configuring VLANs. Understanding VLANs CHAPTER

VLANs. LAN Switching and Wireless Chapter 3. Version Cisco Systems, Inc. All rights reserved. Cisco Public 1

Configuring VLANs. Understanding VLANs CHAPTER

Wireless LAN Overview

Device Interface IP Address Subnet Mask Default Gateway. Ports Assignment Network

CCNA Cisco Certified Network Associate CCNA (v3.0)

Configuring VLANs. Understanding VLANs CHAPTER

Question No : 1 Which three of these statements regarding 802.1Q trunking are correct? (Choose three.)

Configuring VLANs. Understanding VLANs CHAPTER

Configuring VLANs. Understanding VLANs CHAPTER

Per IP Subscriber DHCP Triggered RADIUS Accounting

Configuring Repeater and Standby Access Points and Workgroup Bridge Mode

Configuring VLANs. Understanding VLANs CHAPTER

Configuring VLANs. Understanding VLANs CHAPTER

University of Jordan Faculty of Engineering & Technology Computer Engineering Department Advance Networks Laboratory Exp.4 Inter-VLAN Routing

Configuring VLANs. Understanding VLANs CHAPTER

Using Cisco Discovery Protocol

Chapter 5: Inter-VLAN Routing. Routing & Switching

Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards

VLAN Configuration. Understanding VLANs CHAPTER

Configuring Authentication Types

Lab 6-1 Configuring a WLAN Controller

Cisco Nexus 1000V for KVM Interface Configuration Guide, Release 5.x

Implement Inter-VLAN Routing. LAN Switching and Wireless Chapter 6 Modified by Tony Chen 11/01/2008

IEEE 802.1ad Support on Provider Bridges

Configuring VLANs. Understanding VLANs CHAPTER

Exam : Cisco Certified Network Associate(CCNA) Title : Version : DEMO

Remote Access MPLS-VPNs

ISR Wireless Configuration Example

Top-Down Network Design

Lab 6-1 Configuring a WLAN Controller

Lab 7.5.3: Troubleshooting the Wireless WRT300N

Using Cisco Workgroup Bridges

accounting (SSID configuration mode) through encryption mode wep accounting (SSID configuration mode) through

Configuring VLAN Trunks

Configuring VLANs. Finding Feature Information. Prerequisites for VLANs

VLAN Range. Feature Overview

Workgroup Bridges. Cisco WGBs. Information About Cisco Workgroup Bridges. Cisco WGBs, page 1 Third-Party WGBs and Client VMs, page 9

Configuring Private VLANs

Configuring Cisco IP Phone Support

accounting (SSID configuration mode) through encryption mode wep

Switches running the LAN Base feature set support only static routing on SVIs.

Configuring 802.1Q VLAN Interfaces

Prof. Bill Buchanan Room: C.63

QoS: Child Service Policy for Priority Class

Configuring Access and Trunk Interfaces

Sections Describing Standard Software Features

Wireless LAN Example Scenario

Extended NAS-Port-Type and NAS-Port Support

FAQs for the Cisco Aironet Conversion Tool Version 2.1 for Cisco IOS Software

Configuring Private Hosts

Command Reference for Voice VLAN

Configuring VLANs. Finding Feature Information. Prerequisites for VLANs

Flexible NetFlow Full Flow support

EVC Quality of Service

Configuring the Catalyst 3750G Integrated Wireless LAN Controller Switch

Configuring Link Aggregation on the ML-MR-10 card

IEEE 802.1ah on Provider Backbone Bridges

Sections Describing Standard Software Features

802.1X Authentication Services Configuration Guide, Cisco IOS Release 15SY

Deployment Guide for Cisco Guest Access Using the Cisco Wireless LAN Controller, Release 4.1

How to connect to XBox Live ±via. BiPAC-72,73 Series? How To Connect Xbox 360 Game Consoles to the Router by Ethernet cable (RJ45)?

Table of Contents 1 VLAN Configuration 1-1

Configuring SPAN and RSPAN

Configuring SPAN. Understanding SPAN CHAPTER. This chapter describes how to configure Switched Port Analyzer (SPAN) and on the Catalyst 2960 switch.

Configuring Interfaces

Lab 6.4.2: Challenge Inter-VLAN Routing

Lab - Troubleshooting VLAN Configurations (Instructor Version Optional Lab)

Configuring Private VLANs

Lab 9.1.5b Trunking with 802.1q

Configuring SPAN and RSPAN

VLAN Subinterface Commandsonthe Cisco IOS XR Software

VLANs Level 3 Unit 9 Computer Networks

VLAN Range. Feature Overview

Transcription:

This document describes how to configure your Cisco wireless mobile interface card (WMIC) to operate with the VLANs set up on your wired LAN. These sections describe how to configure your WMIC to support VLANs: Understanding VLANs, page 1, page 3 Understanding VLANs A VLAN is a switched network that is logically segmented, by functions, project teams, or applications rather than on a physical or geographical basis. For example, all workstations and servers used by a particular workgroup team can be connected to the same VLAN, regardless of their physical connections to the network or the fact that they might be intermingled with other teams. You use VLANs to reconfigure the network through software rather than physically unplugging and moving devices or wires. A VLAN can be thought of as a broadcast domain that exists within a defined set of switches. A VLAN consists of a number of end systems, either hosts or network equipment (such as bridges and routers), connected by a single bridging domain. The bridging domain is supported on various pieces of network equipment such as LAN switches that operate bridging protocols between them with a separate group for each VLAN. VLANs provide the segmentation services traditionally provided by routers in LAN configurations. VLANs address scalability, security, and network management. You should consider several key issues when designing and building switched LAN networks: LAN segmentation Security Broadcast control Performance Network management Communication between VLANs Americas Headquarters: Cisco Systems, Inc., 170 West Tasman Drive, San Jose, CA 95134-1706 USA 2008 Cisco Systems, Inc. All rights reserved.

Understanding VLANs You extend VLANs into a wireless LAN by adding IEEE 802.11Q tag awareness to the WMIC. VLAN 802.1Q trunking is supported between root devices and non-root bridges through the bridges primary SSID. Figure 1 shows two bridges sending 802.11Q-tagged packets between two LAN segments that use logical VLAN segmentation. Figure 1 Bridges Connecting LAN Segments Using VLANs VLAN 1 VLAN 2 VLAN 3 VLAN 1 VLAN 2 VLAN 3 802.11Q-tagged packets sent across wireless bridge link 88904 Non-Root Bridge Root Bridge Related Documents These documents provide more detailed information pertaining to VLAN design and configuration: Cisco IOS Switching Services Configuration Guide. Click this link to browse to this document: http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/fswtch_c/index.htm Cisco Internetwork Design Guide. Click this link to browse to this document: http://www.cisco.com/univercd/cc/td/doc/cisintwk/idg4/index.htm Cisco Internetworking Technology Handbook. Click this link to browse to this document: http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/index.htm Cisco Internetworking Troubleshooting Guide. Click this link to browse to this document: http://www.cisco.com/univercd/cc/td/doc/cisintwk/itg_v1/index.htm 2

Incorporating Wireless Bridges into VLANs The basic wireless components of a VLAN consist of two or more bridges communicating using wireless technology. The WMIC is physically connected through a trunk port to the network VLAN switch on which the VLAN is configured. The physical connection to the VLAN switch is through the WMIC s Ethernet port. In fundamental terms, the key to configuring a WMIC to connect to a specific VLAN is by configuring its service set identifier (SSID) to recognize that VLAN. Since VLANs are identified by a VLAN ID, it follows that if the SSID on a WMIC is configured to recognize a specific VLAN ID, a connection to the VLAN is established. The WMIC supports 16 SSIDs. You can assign only one SSID to the native VLAN. These sections describe how to configure VLANs on your WMIC: Configuring a VLAN, page 3 Viewing VLANs Configured on the WMIC, page 6 Configuring a VLAN Configuring your WMIC to support VLANs is a five-step process: 1. Create subinterfaces on the radio and Ethernet interfaces. 2. Enable 802.1q encapsulation on the subinterfaces, and assign one subinterface as the native VLAN. 3. Assign a bridge group to each VLAN. 4. (Optional) Enable WEP on the native VLAN. 5. Assign the WMIC s SSID to the native VLAN. This section describes how to assign an SSID to a VLAN and how to enable a VLAN on the WMIC radio and Ethernet ports. For detailed instructions on assigning authentication types to SSIDs, see Authentication Types. To assign an SSID to a VLAN and enable the VLAN on the WMIC radio and Ethernet ports, follow these steps, beginning in privileged EXEC mode: Command Purpose Step 1 configure terminal Enters global configuration mode. Step 2 interface dot11radio0.x Creates a radio subinterface and enter interface configuration mode for the subinterface. Step 3 encapsulation dot1q vlan-id [native] Enables a VLAN on the subinterface. (Optional) Designate the VLAN as the native VLAN. On many networks, the native VLAN is VLAN 1. 3

Step 4 bridge-group number Assigns the subinterface to a bridge group. You can number your bridge groups from 1 to 255. Note When you enter the bridge-group command, the WMIC enables the subinterface to be ready to participate in STP when you enter the bridge n protocol ieee command. See Spanning Tree Protocol for complete instructions on enabling STP on the WMIC. Step 5 exit Returns to global configuration mode. Step 6 interface fastethernet0.x Creates an Ethernet subinterface and enter interface configuration mode for the subinterface. Step 7 Command encapsulation dot1q vlan-id [native] Purpose Enables a VLAN on the subinterface. (Optional) Designate the VLAN as the native VLAN. On many networks, the native VLAN is VLAN 1. Step 8 bridge-group number Assigns the subinterface to a bridge group. You can number your bridge groups from 1 to 255. Step 9 exit Returns to global configuration mode. Step 10 interface dot11radio 0 Enters interface configuration mode for the radio interface. Step 11 ssid ssid-string Creates an SSID and enter SSID configuration mode for the new SSID. The SSID can consist of up to 32 alphanumeric characters. SSIDs are case sensitive. You can create up to 16 SSIDs on the bridge; however, only one SSID can be assigned to the native VLAN. Note You use the ssid command s authentication options to configure an authentication type for each SSID. See Authentication Types for instructions on configuring authentication types. Step 12 vlan vlan-id Assigns the SSID to the native VLAN. Step 13 infrastructure-ssid Designates the SSID as the infrastructure SSID. It is used to instruct a non-root bridge or workgroup bridge radio to associate with this SSID. 4

Step 14 Command encryption [vlan vlan-id] mode wep {optional [key-hash] mandatory [mic] [key-hash]} Purpose (Optional) Enables WEP and WEP features on the native VLAN. (Optional) Select the VLAN for which you want to enable WEP and WEP features. Set the WEP level and enable TKIP and MIC. If you enter optional, another bridge can associate to the WMIC with or without WEP enabled. You can enable TKIP with WEP set to optional but you cannot enable MIC. If you enter mandatory, other bridges must have WEP enabled to associate to the WMIC. You can enable both TKIP and MIC with WEP set to mandatory. Note You can enable encryption for each VLAN, but the WMIC uses only the encryption on the native VLAN. For example, if the native VLAN encryption is set to 128-bit static WEP, that is the only encryption method used for traffic between the root device and non-root bridge. Step 15 exit Returns to interface configuration mode for the radio interface. Step 16 end Returns to privileged EXEC mode. Step 17 copy running-config startup-config (Optional) Saves your entries in the configuration file. This example shows how to: Enable the VLAN on the radio and Ethernet ports as the native VLAN Name an SSID Assign the SSID to a VLAN bridge# configure terminal bridge(config)# interface dot11radio0.1 bridge(config-subif)# encapsulation dot1q 1 native bridge(config-subif)# bridge group 1 bridge(config-subif)# exit bridge(config)# interface fastethernet0.1 bridge(config-subif)# encapsulation dot1q 1 native bridge(config-subif)# bridge group 1 bridge(config-subif)# exit bridge(config)# interface dot11radio0 bridge(config-if)# ssid batman bridge(config-ssid)# vlan 1 bridge(config-ssid)# infrastructure-ssid bridge(config-ssid)# end 5

Viewing VLANs Configured on the WMIC To view the VLANs that the WMIC supports, use the show vlan command in privileged EXEC mode. The following example shows sample output from the show vlan command: Virtual LAN ID: 1 (IEEE 802.1Q Encapsulation) vlan Trunk Interfaces: Dot11Radio0 FastEthernet0 Virtual-Dot11Radio0 This is configured as native Vlan for the following interface(s) : Dot11Radio0 FastEthernet0 Virtual-Dot11Radio0 Protocols Configured: Address: Received: Transmitted: Bridging Bridge Group 1 201688 0 Bridging Bridge Group 1 201688 0 Bridging Bridge Group 1 201688 0 Virtual LAN ID: 2 (IEEE 802.1Q Encapsulation) vlan Trunk Interfaces: Dot11Radio0.2 FastEthernet0.2 Virtual-Dot11Radio0.2 Protocols Configured: Address: Received: Transmitted: 6

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback