Thursday, October 14, 2010

Dynamic VLAN moving from person to person


As the company continues to expand the network, switches, technology advances, the company's network administrators are more willing to choose the layout can network switches, network switches and can be applied in the VLAN (virtual local area network), VLAN by devices connected from different regions, making the device between different regions separated from each other, VLAN can isolate broadcast and broadcast storm suppression within the scope of this VLAN, VLAN other users will not be affected very save network bandwidth. VLAN technology in the implementation, the dynamic VLAN is obviously loved by the users.

Dynamic VLAN better than the static VLAN

The properties of the switch port connected to divide, VLAN is divided into the static VLAN and dynamic VLAN. Static VLAN refers to the switch which VLAN a port is relatively fixed, while dynamic VLAN is the switch under the access to this computer to determine which VLAN the port is in work.

On the current application, the static VLAN is extensively used, settings are also very simple. However, the only static VLAN is also the largest drawback is that the properties of the switch port must be manually set by the network administrator. If the number of computers in the network over a certain number (eg 200), or need to change, switch port VLAN attributes, the network must be re-configured on the switch, which greatly enhanced the possibility of misuse. And change the connection for each client port, must also change the port belongs VALN, obviously not suitable for those who need frequent changes of network topology.

The dynamic VLAN is not the same, because he is based on the user, rather than switch to set the port, so when the user moves the physical location (ie, change from one switch to another when the switch), VLAN without reconfiguration. Not only reduces the probability of network errors, but also reduces maintenance costs.

Therefore, in the long run, dynamic VLAN network management technology will be more popular.

Username technology into highlights

The realization of the dynamic VLAN technology, according to the realization of the level in the OSI is divided into three kinds of different.

One of the most popular is the second level in the OSI set way to access the link - the definition based on MAC address. It is based on end-user device MAC address to define the membership (and MAC address is the extraction of user equipment to obtain a general network card address), that is when the device is connected into a switch port, the switch to query a database to its establishing VLAN membership.

Therefore, the network administrator must first user's MAC address assigned to the VLAN Membership Policy Server (VMPS, VLAN Membership Policy Server) database of a VLAN. This network manager must first collect all the cards to access VLAN the MAC address and log in, and if the computer for the network card, you have to reset. This undoubtedly increased the workload of network administrators, network card on the regular replacement of notebook users is very inconvenient.

The second approach is the realization of the dynamic VLAN is connected through the computer's IP address to determine the respective port VLAN, this means the third layer in the OSI set the access link to achieve. Unlike the MAC address-based VLAN, even if the computer because of the change network card MAC address, or other reasons to change, as long as it's IP address change, you still can join the pre-set VLAN. Based on this approach compared to MAC address, the change can be more simple network structure.

The third option is the fourth layer in the OSI over achieve, it is based on the user VLAN solutions. This means each port by the switch connected users currently logged on the computer (where the user identification information, usually the computer operating system, the logged on user, for example can use the Windows domain user name) to determine which VLAN the port belongs .

In other words, just use your user name login, the user no matter what computer, what IP the computer is free to access their own VLAN networks. Whether the user or network administrator who is very convenient, are three ways to achieve a relatively good solution.

Due to people moving dynamic VLAN configuration

ASUS launched the second floor above managed switches, their dynamic VLAN according to the user, the user needs a dynamic set of different VLAN, the VLAN attribute changes in the complexity of the work simple, safe and automatic.

This method, we can imagine that there is a switch database, this database information can be stored in a server switch outside (RADIUS Server) or the presence of the switch itself. The database of information including user names, passwords, and the user belongs to VLAN. Users to access switches, the need to enter user information, and then switch the user in the database to find information, read the user's VLAN, and the VLAN settings on the user access port. The user's identity is its own user name and password, regardless of where the user moved to, as long as the certificate is correct, the switch can be added to his dynamic in the corresponding VLAN.






Recommended links:



Who Is Knocking The Door Of Opportunity?



SanDisk to promote large-capacity iPod MP3 strong words



"Tomato Garden" case of first instance Pronounced loss of Chengdu, a total of over 10 million soft



DivX To MPEG



TS To MPG



New Hobby



Hot Office Suites And Tools



Jinshan said the domestic A-share listed denied rumors false



Find out the psychological make promotions



're Renting buy a house in the ascendant with



Jiang Qiping Family Laboratory of Beijing University speech sounded "New Life Movement" horn



XviD to WMV



svchost.exe has encountered a problem repair



1 comment:

  1. Interesting and informative blog.You gave a lengthy information which help a lot in my seminar.You did a good work. Thanks for sharing this type of information.
    electronic signature pdf

    ReplyDelete