1.基本概念
VLAN虚拟局域网是一个把物理的局域网在逻辑上划分成多个广播域的技术。
VLAN分类:基于端口、MAC地址、IP网段、协议类型、策略等方式划分。
优点:隔离广播、提高组网灵活度、提高网络可管理性、提高网络安全性。
802.1Q使VLAN跨交换机得以实现,为了区分不同VLAN的数据帧,数据帧都插入标记,以标记帧的形式存在,最后数据帧被还原成无标记帧进行发送。
2.接口类型
1)Access类型
通常用于连接终端PC、服务器等设备,只收发无标记帧,如果连接路由器(三层模式),且没有部署子接口,则连接交换机的侧的接口也会被配置为Access类型。
基于接口方式的VLAN,一个接口只能加入一个VLAN。
2)Trunk类型
可以接收或转发多个VLAN数据帧的接口,多见于交换机与交换机之间接口互连。如果路由器使用子接口方式与交换机互连,那么交换机侧也可以配置为Trunk接口,Trunk发送数据帧仅当发送的数据帧VLAN-ID与发送接口的PVID相同时,数据帧标记才会被移除。
3)Hybrid类型
也能承载多个VLAN数据,但接口发送数据帧的行为与Trunk接口不同,可以通过指令指定Hybrid接口发送某个或不带标记的数据帧
3.VLAN与Trunk配置
![图片[1]-5.2 VLAN-大赛人网](https://www.dsrw.com/wp-content/uploads/2023/03/图片16-4-1024x463.png)
1)基本配置
<Huawei>system-view
[Huawei]sysname sw1
[sw1]vlan 10
[sw1-vlan10]description VLAN10
[sw1-vlan10]quit
[sw1]vlan 20
[sw1-vlan20]description VLAN20
[sw1-vlan20]quit
[sw1]interface GigabitEthernet 0/0/1
[sw1-GigabitEthernet0/0/1]port link-type access
[sw1-GigabitEthernet0/0/1]port default vlan 10
[sw1-GigabitEthernet0/0/1]quit
[sw1]interface GigabitEthernet 0/0/2
[sw1-GigabitEthernet0/0/2]port link-type access
[sw1-GigabitEthernet0/0/2]port default vlan 20
[sw1-GigabitEthernet0/0/2]quit
[sw1]interface GigabitEthernet 0/0/24
[sw1-GigabitEthernet0/0/24]port link-type trunk
[sw1-GigabitEthernet0/0/24]port trunk allow-pass vl
[sw1-GigabitEthernet0/0/24]port trunk allow-pass vlan 10 20
[SW2]vlan batch 10 20
[SW2]interface GigabitEthernet 0/0/1
[SW2-GigabitEthernet0/0/1]port link-type access
[SW2-GigabitEthernet0/0/1]port default vlan 10
[SW2]interface GigabitEthernet 0/0/2
[SW2-GigabitEthernet0/0/2]port link-type access
[SW2-GigabitEthernet0/0/2]port default vlan 20
[SW2]interface GigabitEthernet 0/0/24
[SW2-GigabitEthernet0/0/24]port link-type trunk
[SW2-GigabitEthernet0/0/24]port trunk allow-pass v
[SW2-GigabitEthernet0/0/24]port trunk allow-pass vlan 10 202)查看VLAN
[sw1]display vlan
VID Type Ports
1 common UT:GE0/0/3(D) GE0/0/4(D) GE0/0/5(D) GE0/0/6(D)
GE0/0/7(D) GE0/0/8(D) GE0/0/9(D) GE0/0/10(D)
GE0/0/11(D) GE0/0/12(D) GE0/0/13(D) GE0/0/14(D)
GE0/0/15(D) GE0/0/16(D) GE0/0/17(D) GE0/0/18(D)
GE0/0/19(D) GE0/0/20(D) GE0/0/21(D) GE0/0/22(D)
GE0/0/23(D) GE0/0/24(U)
10 common UT:GE0/0/1(U)
TG:GE0/0/24(U)
20 common UT:GE0/0/2(U)
TG:GE0/0/24(U)
VID Status Property MAC-LRN Statistics Description
1 enable default enable disable VLAN 0001
10 enable default enable disable VLAN10
20 enable default enable disable VLAN20 3)查看端口VLAN
[sw1]display port vlan
Port Link Type PVID Trunk VLAN List
GigabitEthernet0/0/1 access 10 -
GigabitEthernet0/0/2 access 20 -
GigabitEthernet0/0/3 hybrid 1 -
GigabitEthernet0/0/4 hybrid 1 -
GigabitEthernet0/0/5 hybrid 1 -
GigabitEthernet0/0/6 hybrid 1 -
GigabitEthernet0/0/7 hybrid 1 -
GigabitEthernet0/0/8 hybrid 1 -
GigabitEthernet0/0/9 hybrid 1 -
GigabitEthernet0/0/10 hybrid 1 -
GigabitEthernet0/0/11 hybrid 1 -
GigabitEthernet0/0/12 hybrid 1 -
GigabitEthernet0/0/13 hybrid 1 -
GigabitEthernet0/0/14 hybrid 1 -
GigabitEthernet0/0/15 hybrid 1 -
GigabitEthernet0/0/16 hybrid 1 -
GigabitEthernet0/0/17 hybrid 1 -
GigabitEthernet0/0/18 hybrid 1 -
GigabitEthernet0/0/19 hybrid 1 -
GigabitEthernet0/0/20 hybrid 1 -
GigabitEthernet0/0/21 hybrid 1 -
GigabitEthernet0/0/22 hybrid 1 -
GigabitEthernet0/0/23 hybrid 1 -
GigabitEthernet0/0/24 trunk 1 1 10 204.HYbrid接口配置
1)接口连接PC时HYbrid类型配置
![图片[2]-5.2 VLAN-大赛人网](https://www.dsrw.com/wp-content/uploads/2023/03/图片17-3.png)
(1)缺省配置
<Huawei>system-view
[Huawei]sysname SW1
[SW1]interface GigabitEthernet 0/0/1
[SW1-GigabitEthernet0/0/1]port link-type hybrid (2)划分vlan配置
[SW1]vlan 10
[SW1-vlan10]quit
[SW1]interface GigabitEthernet 0/0/1
[SW1-GigabitEthernet0/0/1]port link-type hybrid
[SW1-GigabitEthernet0/0/1]port hybrid pvid vlan 10
[SW1-GigabitEthernet0/0/1]port hybrid untagged vlan 102)接口连接交换机时HYbrid类型配置
![图片[3]-5.2 VLAN-大赛人网](https://www.dsrw.com/wp-content/uploads/2023/03/图片18-3.png)
[SW2]interface GigabitEthernet 0/0/24
[SW2-GigabitEthernet0/0/24]port link-type hybrid
[SW2-GigabitEthernet0/0/24]port hybrid tagged vlan 103)HYbrid接口是否打标记配置
![图片[4]-5.2 VLAN-大赛人网](https://www.dsrw.com/wp-content/uploads/2023/03/图片19-3.png)
[sw1]interface GigabitEthernet 0/0/1
[sw1-GigabitEthernet0/0/1]port link-type hybrid
[sw1-GigabitEthernet0/0/1]port hybrid tagged vlan 10
[sw1]interface GigabitEthernet 0/0/2
[sw1-GigabitEthernet0/0/2]port link-type hybrid
[sw1-GigabitEthernet0/0/2]port hybrid tagged vlan 20
[sw1]interface GigabitEthernet 0/0/3
[sw1-GigabitEthernet0/0/3]port link-type hybrid
[sw1-GigabitEthernet0/0/3]port hybrid pvid vlan 100
[sw1-GigabitEthernet0/0/3]port hybrid untagged vlan 100
[sw1-GigabitEthernet0/0/24]port link-type hybrid
[sw1-GigabitEthernet0/0/24]port hybrid tagged vlan 10 20
[sw1-GigabitEthernet0/0/24]port hybrid pvid vlan 100
[sw1-GigabitEthernet0/0/24]port hybrid untagged vlan 100
[SW2]vlan batch 10 20 100
[SW2]interface GigabitEthernet 0/0/24
[SW2-GigabitEthernet0/0/24]port link-type hybrid
[SW2-GigabitEthernet0/0/24]port hybrid tagged vlan 10 20
[SW2-GigabitEthernet0/0/24]port hybrid pvid vlan 100
[SW2-GigabitEthernet0/0/24]port hybrid untagged vlan 100 5.基于IP地址划分VLAN
![图片[5]-5.2 VLAN-大赛人网](https://www.dsrw.com/wp-content/uploads/2023/03/图片20-3.png)
1)配置基于IP子网划分VLAN
[SW2]vlan batch 10 20 30
[SW2-vlan10]ip-subnet-vlan ip 192.168.10.0 24
[SW2]vlan 20
[SW2-vlan20]ip-subnet-vlan ip 192.168.20.0 24
[SW2]vlan 30
[SW2-vlan30]ip-subnet-vlan ip 192.168.30.0 242)配置标记,激活基于IP子网划分VLAN
[SW2]interface GigabitEthernet 0/0/24
[SW2-GigabitEthernet0/0/24]port link-type hybrid
[SW2-GigabitEthernet0/0/24]port hybrid untagged vlan 10 20
[SW2-GigabitEthernet0/0/24]port hybrid tagged vlan 30
[SW2-GigabitEthernet0/0/24]ip-subnet-vlan enable 3)配置接口为Trunk类型,放行VLAN10、20、30(以标记形式通过)
[SW2]interface GigabitEthernet 0/0/23
[SW2-GigabitEthernet0/0/23]port link-type trunk
[SW2-GigabitEthernet0/0/23]port trunk allow-pass vlan 10 20 30© 版权声明
文章版权归作者所有,未经允许请勿转载。
THE END
请登录后查看评论内容