🖧 VLAN (Virtual Local Area Network)

 

🖧 VLAN (Virtual Local Area Network)

🧠 Top 5 Key Points

  1. Logical Network Segmentation:
    VLANs divide a physical network into multiple logical networks, improving management and security.

  2. Improved Security:
    Devices in different VLANs cannot communicate unless explicitly allowed via a router or Layer 3 switch.

  3. Reduces Broadcast Domains:
    Each VLAN is its own broadcast domain, minimizing unnecessary traffic.

  4. Better Management:
    Departments (HR, Sales, IT, etc.) can be grouped into different VLANs without changing physical cabling.

  5. Requires VLAN Tagging (802.1Q):
    VLAN information is carried between switches using 802.1Q trunking.

⚙️ Technical Notes

FeatureDescription
OSI LayerLayer 2 (Data Link)
StandardIEEE 802.1Q
Device TypeManaged Switch or Layer 3 Switch
VLAN Range1–4094
Default VLANVLAN 1

🧰 Packet Tracer VLAN Lab

🎯 Goal:

Create three VLANs (10, 20, 30) on a switch, assign PCs to them, and verify connectivity.

🖥️ Network Topology

           +------------------------+
           |        Switch (S1)     |
           +------------------------+
             |      |      |
           PC1    PC2    PC3

VLAN Plan

VLAN IDVLAN NameDepartmentConnected PCIP Address
10HRHR DeptPC1192.168.10.10
20SALESSales DeptPC2192.168.20.10
30ITIT DeptPC3192.168.30.10

🪜 Configuration Steps

🔹 On the Switch (S1)

enable
conf t
vlan 10
 name HR
vlan 20
 name SALES
vlan 30
 name IT
exit

🔹 Assign Ports to VLANs

Assume:

  • PC1 → FastEthernet 0/1

  • PC2 → FastEthernet 0/2

  • PC3 → FastEthernet 0/3

interface range fa0/1
 switchport mode access
 switchport access vlan 10
exit

interface range fa0/2
 switchport mode access
 switchport access vlan 20
exit

interface range fa0/3
 switchport mode access
 switchport access vlan 30
exit

🔹 Verify VLAN Configuration

show vlan brief

➡ Confirms VLAN IDs, names, and assigned ports.

🔹 Set IP Addresses on PCs

PCVLANIP AddressSubnet Mask
PC110192.168.10.10255.255.255.0
PC220192.168.20.10255.255.255.0
PC330192.168.30.10255.255.255.0

(Configure via Desktop → IP Configuration tab in Packet Tracer)

💡 Testing

Try pinging between PCs:

  • PC1 → PC2 (should fail — different VLANs)

  • PC1 → PC3 (should fail)
    ✅ Same VLAN pings succeed (if trunk and router configured later).

🚦 Optional: Inter-VLAN Routing

To allow communication between VLANs, use a Router-on-a-Stick configuration:

  • Create subinterfaces on a router.

  • Use 802.1Q encapsulation to handle multiple VLANs on one trunk port.

🧠 Learning Summary

ConceptDescription
VLANVirtual LAN — separates network logically
BenefitSecurity, scalability, and efficiency
Broadcast DomainEach VLAN = 1 broadcast domain
Trunk LinkCarries multiple VLANs (802.1Q tagging)
Router on a StickEnables inter-VLAN communication

🗺️ Teaching Tip

“VLANs let you separate a single switch into multiple smaller virtual switches — like dividing one big office into smaller secure departments without adding new hardware.”

Comments

Post a Comment

Popular posts from this blog

🖥️ Private IP vs Public IP Address

  🖥️ Private IP vs Public IP Address 🧠 Definition: Private IP Address: Used inside a private network (LAN) — identifies devices like PCs, printers, and routers within a local area. Example: 192.168.1.10 Public IP Address: Used on the Internet — identifies your network or device globally so it can communicate with other networks. Example: 8.8.8.8 🔹 Key Differences Feature Private IP Address Public IP Address Scope Used within local/private networks Used on the Internet (global scope) Uniqueness Can be reused in different networks Must be unique worldwide Assigned by Network Administrator or Router (DHCP) Internet Service Provider (ISP) Accessibility Not reachable from the Internet Reachable over the Internet Security More secure, hidden from external access Less secure, visible on the Internet Example Ranges 10.0.0.0 – 10.255.255.255 172.16.0.0 – 172.31.255.255 192.168.0.0 – 192.168.255.255 1.0.0.0 – 223.255.255.255 (except private ranges) 💡 Quick Example...
Read more

🧠 Introduction to CCNA Networking

  Absolutely 👍 — here’s a ready-to-use introduction to CCNA Networking you can present to students, either as teaching content , classroom introduction , or course overview . It’s written in a student-friendly, engaging, and clear way 👇 🧠 Introduction to CCNA Networking 🌍 What is CCNA? CCNA (Cisco Certified Network Associate) is a globally recognized certification offered by Cisco Systems , one of the leading companies in networking technologies. It’s designed to build your foundational knowledge in computer networking , covering how data moves across networks, how devices communicate, and how to configure and troubleshoot network systems. In short: CCNA teaches you how the Internet works — from cables to routers to cloud. 🎯 Learning Objectives By the end of this course, students will be able to: Understand network fundamentals — how data travels between devices. Explain LANs (Local Area Networks) and WANs (Wide Area Networks) . Configure and troubles...
Read more