D-Link DGS-3308FG Product Manual - Page 65

VLAN Layout, Assigning IP Network Addresses and Subnet Masks to VLANs, Defining Static Routes

Get D-Link DGS-3308FG - Switch PDF manuals and user guides
UPC - 790069239373
View all D-Link DGS-3308FG manuals
Add to My Manuals
Save this manual to your list of manuals

Page 65 highlights

8-port Gigabit Ethernet Switch User's Guide 5. Develop a security scheme. Some subnets on the network need more security or should be isolated from the other subnets. IP or MAC filtering can be used. Also, one or more VLANs on the Layer 3 switch can be configured without an IP subnet - in which case, these VLANs will function as a layer 2 VLAN and would require an external router to connect to the rest of the network. 6. Develop a policy scheme. Some subnets will have a greater need for multicasting bandwidth, for example. A policy is a mechanism to alter the normal packet forwarding in a network device, and can be used to intelligently allocate bandwidth to time-critical applications such as the integration of voice, video, and data on the network. 7. Develop a redundancy scheme. Planning redundant links and routes to network critical resources can save valuable time in case of a link or device failure. The Spanning Tree function can be used to block the redundant link until it is needed. VLAN Layout VLANs on the DGS-3308 have rather more functions than on a traditional layer 2 switch, and must therefore be laid-out and configured with a bit more care. Layer 3 VLANs could be thought of as network links - not just as a collection of associated end users. Further, Layer 3 VLANs are assigned an IP network address and subnet mask to enable IP routing between them. Layer 3 VLANs must be configured on the switch before they can be assigned IP subnets. Further, the static VLAN configuration is specified on a per port basis. On the DGS-3308, a VLAN can consist of end-nodes - just like a traditional layer 2 switch, but a VLAN can also consist of one or more layer 2 switches - each of which is connected to multiple endnodes or network resources. So, a Layer 3 VLAN, consisting of 4 ports, could be connected to 4 layer 2 switches. If these layer 2 switches each have 8 ports, then the Layer 3 VLAN would contain 4 x 8 = 32 end nodes. Assigning an IP subnet to the Layer 3 VLAN would allow wire-speed IP routing from the WAN to each end node and between end nodes. So, the IP subnets for a network must be determined first, and the VLANs configured on the switch to accommodate the IP subnets. Finally, the IP subnets can be assigned to the VLANs. Assigning IP Network Addresses and Subnet Masks to VLANs The DGS-3308 allows the assignment of IP subnets to individual VLANs. Any VLAN configured on the switch that is not assigned an IP subnet, will behave as a layer 2 VLAN and will not be capable of IP routing - even if the switch is in IP Routing mode. Developing an IP addressing scheme is a complex subject, but it is sufficient here to mention that the total number of anticipated end nodes - for each Layer 3 VLAN - must be accommodated with an unique IP address. It should be noted that the switch regards a VLAN with an IP network address and corresponding subnet mask assigned as an IP interface in IP Routing mode. Note: See the section titled IP Addressing and Subnetting in Chapter 5 for more information. Defining Static Routes Routes between the IP interfaces and a default gateway or other router with a WAN connection should be determined beforehand and entered into the static/default routing table on the DGS-3308. Existing WAN or Internet connections will probably have a router to connect the interface device to the network. This router can be connected to the DGS-3308 using a port designated as a 'router port'. Designating a port as a router port allows multicasting messages to be passed to the router with a WAN or Internet connection without flooding these messages throughout the network. This saves considerable bandwidth and increases performance without additional investment in network equipment. 55

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
  • 145
  • 146
  • 147
  • 148
  • 149
  • 150
  • 151
  • 152
  • 153
  • 154
  • 155
  • 156
  • 157
  • 158
  • 159
  • 160
  • 161
  • 162
  • 163
  • 164
  • 165
  • 166
  • 167
  • 168
  • 169
  • 170
  • 171
  • 172
  • 173
  • 174
  • 175
  • 176
  • 177
  • 178
  • 179
  • 180
  • 181
  • 182
  • 183
  • 184
  • 185
  • 186
  • 187
  • 188
  • 189
  • 190
  • 191
  • 192
  • 193
  • 194
  • 195
  • 196
  • 197
  • 198
  • 199
  • 200
  • 201
  • 202
  • 203
  • 204
  • 205
  • 206
  • 207
  • 208
  • 209
  • 210
  • 211
  • 212
  • 213
  • 214
  • 215
  • 216
  • 217
  • 218
  • 219
  • 220
  • 221
  • 222
  • 223
  • 224
  • 225
  • 226
  • 227
  • 228
  • 229
  • 230
  • 231
  • 232
  • 233
  • 234
  • 235
  • 236
  • 237
8-port Gigabit Ethernet Switch User’s Guide
55
5.
Develop a security scheme. Some subnets on the network need more security or should be isolated from the other
subnets. IP or MAC filtering can be used. Also, one or more VLANs on the Layer 3 switch can be configured
without an IP subnet – in which case, these VLANs will function as a layer 2 VLAN and would require an external
router to connect to the rest of the network.
6.
Develop a policy scheme. Some subnets will have a greater need for multicasting bandwidth, for example. A policy
is a mechanism to alter the normal packet forwarding in a network device, and can be used to intelligently
allocate bandwidth to time-critical applications such as the integration of voice, video, and data on the network.
7.
Develop a redundancy scheme. Planning redundant links and routes to network critical resources can save
valuable time in case of a link or device failure. The Spanning Tree function can be used to block the redundant
link until it is needed.
VLAN Layout
VLANs on the DGS-3308 have rather more functions than on a traditional layer 2 switch, and must therefore be laid-out
and configured with a bit more care. Layer 3 VLANs could be thought of as network links – not just as a collection of
associated end users. Further, Layer 3 VLANs are assigned an IP network address and subnet mask to enable IP routing
between them.
Layer 3 VLANs must be configured on the switch before they can be assigned IP subnets. Further, the static VLAN
configuration is specified on a per port basis. On the DGS-3308, a VLAN can consist of end-nodes – just like a traditional
layer 2 switch, but a VLAN can also consist of one or more layer 2 switches – each of which is connected to multiple end-
nodes or network resources.
So, a Layer 3 VLAN, consisting of 4 ports, could be connected to 4 layer 2 switches. If these layer 2 switches each have 8
ports, then the Layer 3 VLAN would contain 4 x 8 = 32 end nodes. Assigning an IP subnet to the Layer 3 VLAN would
allow wire-speed IP routing from the WAN to each end node and between end nodes.
So, the IP subnets for a network must be determined first, and the VLANs configured on the switch to accommodate the IP
subnets. Finally, the IP subnets can be assigned to the VLANs.
Assigning IP Network Addresses and Subnet Masks to VLANs
The DGS-3308 allows the assignment of IP subnets to individual VLANs. Any VLAN configured on the switch that is not
assigned an IP subnet, will behave as a layer 2 VLAN and will not be capable of IP routing – even if the switch is in IP
Routing mode.
Developing an IP addressing scheme is a complex subject, but it is sufficient here to mention that the total number of
anticipated end nodes – for each Layer 3 VLAN – must be accommodated with an unique IP address. It should be noted
that the switch regards a VLAN with an IP network address and corresponding subnet mask assigned as an IP interface in
IP Routing mode.
Note:
See the section titled
IP Addressing and Subnetting
in Chapter 5 for more information.
Defining Static Routes
Routes between the IP interfaces and a default gateway or other router with a WAN connection should be determined
beforehand and entered into the static/default routing table on the DGS-3308.
Existing WAN or Internet connections will probably have a router to connect the interface device to the network. This router
can be connected to the DGS-3308 using a port designated as a ‘router port’. Designating a port as a router port allows
multicasting messages to be passed to the router with a WAN or Internet connection without flooding these messages
throughout the network. This saves considerable bandwidth and increases performance without additional investment in
network equipment.