LAN Segmentation - PowerPoint PPT Presentation

1 / 17

About This Presentation

Title:

LAN Segmentation

Description:

Segmenting shared-media LANs divides the users into separate ... Segmenting is the process of separating certain portions of network traffic, either for ... – PowerPoint PPT presentation

Number of Views:508

Avg rating:3.0/5.0

Slides: 18

Provided by: computingN

Category:

more less

Transcript and Presenter's Notes

Title: LAN Segmentation

1
LAN Segmentation

Virtual LAN (VLAN)

2
Collision domains

A collision domain is defined as a network
segment that shares bandwidth with all other
devices on the same network segment.
Bandwidth contention between users
Segmenting shared-media LANs divides the users
into separate collision domains or LAN segments,
Reduces the number of users contending for
bandwidth

3
Network Segmentation

Segmenting is the process of separating certain
portions of network traffic, either for
performance,
security, or
reliability reasons.
Logical or geographical organisation
Popular network devices used for segmenting the
network
A switch, or a
A router

4
Segmenting via Routers

We have seen the use of routers for
Segmenting local networks
Dividing an enterprise network into different
departments
and connecting to different router interfaces
routers don't retransmit broadcast packets by
default
The limitation of subnetting a network with a
router is that all devices on that subnet must be
connected to the same switch and that switch must
be connected to a port on the router.
What if users on a network are connected to
different switches?

5
Switches

Switches are data link layer devices that enable
multiple physical LAN segments to be
interconnected into a single larger network
switches forward and flood traffic based on MAC
addresses.
MAC addresses are mapped to switch ports
Because switching is performed in hardware
instead of in software, however, it is
significantly faster.

6
(No Transcript)
7
Segmentation using switches

LAN switching technology, employs
micro-segmentation within switch hardware, which
segments the LAN
to fewer users, or
a single user with a dedicated LAN segment.
(Figure 1)
Each switch port provides a dedicated, 10MB
Ethernet segment
Switches usually allows multiple conversations
(traffic between two ports) to occur
simultaneously.

Figure 1
8
Problem with switches

Switches do not break up broadcast domains,
meaning that if a device sends a broadcast, all
devices connected to that switch must listen.
To break up broadcast domains, we've
traditionally used routers
Virtual LANs are a way to break up broadcast
domains in a Layer 2 switched network

9
VLANs
VLANs logically segment switched networks based
on an organization's functions, project teams, or
applications as opposed to a physical or
geographical basis.
10
VLAN

VLAN is a broadcast domain
Grouped based on logical function, department or
application
20 to 40 of work force moves every year
Recabling / readdressing and reconfiguration
Traffic can be switched between VLANS with a
router

11
LAN VS. VLAN
12
When should you need a VLAN?

You have more than 200 devices on your LAN
You have a lot of broadcast traffic on your LAN
Groups of users need more security or are being
slowed down by too many broadcasts?
Groups of users need to be on the same broadcast
domain because they are running the same
applications..

13
VLAN Configuration
14
Static VLANs
Assign ports to VLAN 2 Enter the following
commands to add ports 0/7 to 0/9 to VLAN
2 Switch_Bconfigure terminal Switch_B Vlan 2
name Sales Switch_B(config)interface
fastethernet 0/7 Switch_B(config-if)switchport
mode access Switch_B(config-if)switchport access
vlan 2
Assign ports on VLAN 3 Switch_Bconfigure
terminal Switch_B vlan 3 name Admin Switch_B(conf
ig)interface fastethernet 0/10 Switch_B(config-if
)switchport mode access Switch_B(config-if)switc
hport access vlan 3
15
Configure VLANs on the Switches in a Converged
Network Topology
16
Role of Trunking VLANs in a Converged Network