Академический Документы
Профессиональный Документы
Культура Документы
Environment
FACT:VLAN Port Types Explained
FACT:HP Switch Software
Questions/Symptoms
SYMPTOM:Has a user ever questioned what VLAN port type one needs to configure on the HPE Networking
Switches? Hopefully this article will help to decide
Cause
CAUSE:Informational article on VLAN port types.
Answer/Solution
FIX:VLANs
Virtual LAN – A logical broadcast domain.
VLANS are used to divide a network segment to smaller sub networks to:
• Reduce the overhead of layer 2 broadcast.
• Increase security.
• Improve management of network infrastructure
A virtual LAN (VLAN) is a collection of network nodes that are logically grouped
together to form a separate broadcast domain. A VLAN has the same general
attributes as a physical LAN, but it allows all nodes for a particular VLAN to be
grouped together, regardless of physical location. One advantage of using VLANs is design flexibility.
Access ports:
• Belong to one VLAN – Port is untagged
Trunk ports:
• Carry multiple VLANs on a single physical link
• VLANs are 802.1Q tagged
• The native VLAN is untagged
Hybrid ports:
• Belongs to multiple VLANs
• Multiple VLANs can be untagged and tagged
• Typically used for IP phone connection
• Also in conjunction with protocol VLANs, IP subnet VLANs
A-Series switches
By default, VLAN 1 is the native VLAN. To define a trunk:
1/4
28/6/2018
interface gi 1/0/1
port link-type trunk
port trunk permit [all | vlan ids]
port trunk pvid vlan [id] (Defines Native VLAN.)
In this case, VLAN 1 will be tagged if still carried. The undo port trunk permit vlan 1 command undoes
VLAN 1 assignment.
Control plane info, including BPDU and LLDP frames, is sent untagged.
Access ports are ports that belong to a single VLAN and the traffic is sent and
received untagged. There are two methods to define access ports.
[SW-A]interface gi 1/0/1
[SW-A-GigabitEthernet1/0/1]port link-type access
[SW-A-GigabitEthernet1/0/1]port access vlan 100
Hybrid Ports
Hybrid ports are used mostly for IP phones. Hybrid ports can be assigned to multiple VLANs as tagged or
untagged.
Note: Hybrid port is still part of VLAN 1. Then Remove hybrid port from VLAN 1
This makes VLAN tagged on port and auto-QoS if Phone SNMP OUI Is detected.
Voice VLAN command will dynamically:
• Allocate the voice vlan as a tagged vlan with auto qos if a predefined phone
SNMP OUI is detected.
• Add OUI with voice OUI command at system view.
[SWA]vlan 2
[SWA-vlan2]Description IP and ARP VLAN
[SWA-vlan2]protocol-vlan mode ethernetii etype 0800
[SWA-vlan2]protocol-vlan mode ethernetii etype 0806
[SWA-vlan2]vlan 3
[SWA-vlan2]Description Novell IPX VLAN
[SWA-vlan3]protocol-vlan ipx llc
[SWA-vlan3]interface gigabit 1/1/1
[SWA-gigabit1/1/1]description Access port Separate IP and IPX traffic
[SWA-gigabit1/1/1]port link-type hybrid
[SWA-gigabit1/1/1]undo port hybrid vlan 1
[SWA-gigabit1/1/1]port hybrid vlan 2 3 untagged
[SWA-gigabit1/1/1]port hybrid protocol-vlan vlan 2 all
[SWA-gigabit1/1/1]port hybrid protocol-vlan vlan 3 all
2/4
28/6/2018
[SW-port-group-manual-phones-1]group-member gi 1/0/11 to gi 1/0/20
[SW-port-group-manual-phones-1]port link-type hybrid
NOTE: Hybrid port is still part of VLAN 1. Then Remove hybrid port from VLAN 1.
[SW-port-group-manual-phones-1]undo port hybrid vlan 1 untagged.
Trunk Ports
On trunk 802.1Q ports: one VLAN at most is untagged, all other VLANs are tagged
On edge switches one can set the uplinks as trunk ports carrying all VLANs:
NOTE: Do not confuse trunk ports with the link aggregation ports that are called trunk ports on HP E-
Series switches.
This forces the interface to be tagged on VLAN 1. If VLAN 1 is not desired on port,remove it:
[SW-A-GigabitEthernet1/0/23]undo port trunk permit vlan 1
VLAN 1 is not necessary on A-Series switches. For example: BPDUs for STP, LLDP or
LACP are sent untagged no matter what the setup of the VLANs are on the link.
BPDUs are accepted by a receiving switch because the destination MAC address matches the list of MAC
addresses on the ports. In other words, because the protocols (LLDP, STP, LACP) are enabled on port and
global levels.
E-Series switches:
E-Series switches do not use the same terminology as the A-Series. On E-Series
devices, VLAN membership is configured from the VLAN context with the tagged
and untagged commands. A port can be considered to be a VLAN trunk port if it is
assigned to more than one VLAN. Similarly, a port can be considered to be an
access port if it is only assigned to one VLAN for untagged traffic.
3/4
28/6/2018
© Copyright 2016 Hewlett-Packard Development Company, L.P.
4/4