- Data VLAN: Configured to carry only user-generated traffic, ensuring that voice and management traffic is separated from data traffic.
==> Loại này thì đã hiểu - Default VLAN: All the ports on a switch are members of the default VLAN when the switch is reset to factory defaults. The default VLAN for Cisco switches is VLAN 1. VLAN 1 has all the features of any VLAN, except that you cannot rename it and you cannot delete it. It is a security best practice to restrict VLAN 1 to serve as a conduit only for Layer 2 control traffic (for example, CDP or VTP), supporting no other traffic.
==> Ý là Vlan 1 tốt nhất là phục vụ cho các dịch vụ điều khiển Layer 2 (CDP hay VTP). Vậy cho em hỏi các Vlan khác thì không có CDP or VTP à ? Nếu có thì cấu hình như thế nào để loại bỏ, chỉ cho chạy bên Vlan 1. - Black hole VLAN: A security best practice is to define a black hole VLAN to be a dummy VLAN distinct from all other VLANs defined in the switched LAN. All unused switch ports are assigned to the black hole VLAN so that any unauthorized device connecting to an unused switch port will be prevented from communicating beyond the switch to which it is connected.
==> Loại này đã hiểu. Ý là những port nào chưa dùng thì đưa vào Black hole VLan này --> Security. - Native VLAN: This VLAN type serves as a common identifier on opposing ends of a trunk link. A security best practice is to define a native VLAN to be a dummy VLAN distinct from all other VLANs defined in the switched LAN. The native VLAN is not used for any traffic in the switched network unless legacy bridging devices happen to be present in the network, or a multiaccess interconnection exists between switches joined by a hub.
==> Chưa hiểu thông lắm. Nhớ là loại này dùng cho các traffic thời gian thực, ít legacy. - Management VLAN: A VLAN defined by the network administrator as a means to access the management capabilities of a switch. By default, VLAN 1 is the management VLAN. It is a security best practice to define the management VLAN to be a VLAN distinct from all other VLANs defined in the switched LAN. You do so by configuring and activating a new VLAN interface.
==> Tạm hiểu :) - Voice VLANs: The voice VLAN feature enables switch ports to carry IP voice traffic from an IP phone. The network administrator configures a voice VLAN and assigns it to access ports.Then when an IP phone is connected to the switch port, the switch sends CDP messages that instruct the attached IP phone to send voice traffic tagged with the voice VLAN ID.
==> Đã hiểu. Nhưng tại sao họ lại tách Voice VLAN và Native VLAN ra làm hai ?
Nhờ các anh/chị giải thích thêm về các loại VLANs này ? Nếu có minh họa hoặc ứng dụng thực tế thì càng tốt.
Thanks anh/chị trước :)
Comment