switched lan - mario baldi, pietro nicoletti copyright © 2002 - the mcgraw-hill companies srl...
TRANSCRIPT
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
Capitolo 5
VLAN: reti locali virtuali
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
LAN A
LAN A
LAN A
LAN B
LAN B
LAN B
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
Lan produzione
Lan amministrazione
Lan progettazione
Lan presidenza
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
VLAN 8 VLAN 2 VLAN 2 VLAN 8
Switch
VLAN 8 VLAN 2
Trunk BackboneVLAN 8
Switch
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
Switch A
ACCESS(untagged)
TRUNK TRUNK
TRUNK TRUNKTRUNKTRUNK
Switch B
Switch C Switch D
ACCESS(untagged)
ACCESS(untagged)
ACCESS(untagged)
(tagged)
(tag
ged
)
(tag
ged
)
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
SW-Prova#sho vlan briefVLAN Name Status Ports---- -------------------- --------- -------------------------------1 default active Fa0/1, Fa0/2, Fa0/3, Fa0/4, Fa0/5, Fa0/6, Fa0/7, Fa0/8, Fa0/9, Fa0/10, Fa0/11, Fa0/12, Fa0/13, Fa0/14, Fa0/15, Fa0/16, Fa0/17, Fa0/18, Fa0/19, Fa0/20, Fa0/21, Fa0/22, Fa0/23, Fa0/24, Fa0/25, Fa0/26, Fa0/27, Fa0/28, Fa0/29, Fa0/30, Fa0/31, Fa0/32, Fa0/33, Fa0/34, Fa0/35, Fa0/36, Fa0/37, Fa0/38, Fa0/39, Fa0/40, Fa0/41, Fa0/42, Fa0/43, Fa0/44, Fa0/45, Fa0/46, Fa0/47, Fa0/48, Gi0/1, Gi0/2
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
SW-Prova#vlan databaseSwitch(vlan)#vlan 2 name AmministrazioneVLAN 2 added: Name: AmministrazioneSwitch(vlan)#vlan 3 name VenditeVLAN 3 added: Name: VenditeSwitch(vlan)#vlan 4 name prova-1VLAN 4 added: Name: prova-1Switch(vlan)#vlan 5 name prova-2VLAN 5 added: Name: prova-2Switch(vlan)#vlan 6 name prova-3VLAN 6 added: Name: prova-3Switch(vlan)#vlan 100 name ProduzioneVLAN 100 added: Name: ProduzioneSW-Prova(vlan)#exitAPPLY completed.Exiting....SW-Prova#
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
SW-Prova(config)#int fastEthernet 0/12SW-Prova(config-if)#switchport access vlan 100Switch(config-if)#exit…….SW-Prova(config)#int fastEthernet 0/16SW-Prova(config-if)#switchport access vlan 2SW-Prova(config-if)#exit……..SW-Prova(config)#int fastEthernet 0/20SW-Prova(config-if)#switchport access vlan 3SW-Prova(config-if)#exit……..SW-Prova(config)#int fastEthernet 0/24SW-Prova(config-if)#switchport access vlan 4SW-Prova(config-if)#exit…….SW-Prova(config)#int fastEthernet 0/28SW-Prova(config-if)#switchport access vlan 5SW-Prova(config-if)#exit……..SW-Prova(config)#int fastEthernet 0/32SW-Prova(config-if)#switchport access vlan 6SW-Prova(config-if)#exit……..
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
SW-Prova#show vlan briefVLAN Name Status Ports---- -------------------- --------- -------------------------------1 default active Fa0/1, Fa0/2, Fa0/3, Fa0/4, Fa0/5, Fa0/6, Fa0/7, Fa0/8, Fa0/9, Fa0/10, Fa0/11, Fa0/36, Fa0/37, Fa0/38, Fa0/39, Fa0/40, Fa0/41, Fa0/42, Fa0/43, Fa0/44, Fa0/45, Fa0/46, Fa0/47, Fa0/48, Gi0/1, Gi0/22 Amministrazione active Fa0/16, Fa0/17, Fa0/18, Fa0/19 3 Vendite active Fa0/20, Fa0/21, Fa0/22, Fa0/23 4 prova-1 active Fa0/24, Fa0/25, Fa0/26, Fa0/27 5 prova-2 active Fa0/28, Fa0/29, Fa0/30, Fa0/31 6 prova-3 active Fa0/32, Fa0/33, Fa0/34, Fa0/35
100 Produzione active Fa0/12, Fa0/13, Fa0/14, Fa0/15
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
SW-Prova(config)#interface GigabitEthernet 0/1SW-Prova(config-if)#switchport mode trunkSW-Prova(config-if)#switchport trunk allowed vlan add 1,2,5,6SW-Prova(config-if)#exitSW-Prova(config)#interface GigabitEthernet 0/2SW-Prova(config-if)#switchport mode trunkSW-Prova(config-if)#switchport trunk allowed vlan all
TRUNKTRUNK
(tagged)
ACCESS(untagged)
VL
AN
1V
LA
N 2
VL
AN
3V
LA
N 4
VL
AN
5V
LA
N 6
VL
AN
100
ACCESS(untagged)
SW-Prova
VL
AN
1V
LA
N 2
VL
AN
3V
LA
N 4
VL
AN
5V
LA
N 6
VL
AN
100
ACCESS(untagged)
VL
AN
1V
LA
N 2
VL
AN
5V
LA
N 6
TRUNKTRUNK
(tagged)
SW-A SW-B
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
TRUNKTRUNK
(tagged)
VL
AN
1V
LA
N 2
VL
AN
3V
LA
N 4
VL
AN
5V
LA
N 6
VL
AN
100
SW-Prova
VL
AN
1V
LA
N 2
VL
AN
3V
LA
N 4
VL
AN
5V
LA
N 6
VL
AN
100
VL
AN
1V
LA
N 2
VL
AN
5V
LA
N 6
TRUNKTRUNK
(tagged)
SW-A SW-B
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
Destination Address
Source Address
Length/Type = TPID
Tag Control Information
Client Length/Type
MAC Client DATA
PAD
FCS
6
2
2
2
42-
1500
4
Definito in: IEEE 802.3ac IEEE 802.1Q
userpriority
CFI
VID (VLAN ID) - 12 bits
3 1
81-00801.Q Tag
6
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
HUB /Repeater
HUB /Repeater
HUB /Repeater
HUB /Repeater
REALIZZAZIONE ANARCHICA DELLE VLAN
Tutte le interfacce dei calcolatori sono VLAN-aware e devono
essere configurate come trunk (generazione di pacchetti tagged)
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
Switch A
TRUNK(tagged)
TRUNK TRUNK
TRUNK TRUNKTRUNKTRUNK
Switch B
Switch C Switch D
TRUNK(tagged)
TRUNK(tagged)
TRUNK(tagged)
(tagged)(t
agg
ed)
(tag
ged
)
Tutte le interfacce dei calcolatori sono VLAN-aware e devono
essere configurate come trunk (generazione di pacchetti tagged)
REALIZZAZIONE ANARCHICA DELLE VLAN
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
Switch A
ACCESS(untagged)
TRUNK TRUNK
TRUNK TRUNKTRUNKTRUNK
Switch B
Switch C Switch D
ACCESS(untagged)
ACCESS(untagged)
ACCESS(untagged)
(tagged)
(tag
ged
)
(tag
ged
)
TRUNK
TRUNK
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
VLAN 10
VLAN 30
Accesslink
VLAN-awarebridge
Hybridlink
Accesslink
VLAN-awarebridge
VLAN-awareend station
VLAN-unawareend station
VLAN-unawareend station
VLAN 10
VLAN 20
Associate daibridge
alla VLAN 30
VLAN-unawareend station VLAN 30
Accesslink
VLAN 20
LAN XY
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
Multicast01-80-C2-00-00-21
SinglecastIndirizzo
del BridgeXY
LengthDestination Addr. Source Addr.
042H 042H
DSAP SSAP
XID
Control
GVRP PDU FCS
Protocol Identifier: 00-01 1÷2
3
4
5
6 ÷7
Attribute Type: 00-01Attribute Length: 04
Attribute Event VLAN ID
Attributo 1
Attribute Length: 04 Attribute Event
VLAN ID Attributo n
End Mark 00
Lista degli attibuti
0 = LeaveALL1= JoinEmpty2= JoinIn3= Leave Empty4= LeaveIN5= Empty
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
Switch SVL
Port MAC adress Ag. Time VLAN
4 5 6 7 8 9
08-00-2b-16-50-a0
4 08-00-2b-16-50-a0 1 2
7 08-00-2b-c4-e6-aa 2 4
5 08-00-2b-20-10-56 7 2
2 08-00-5a-10-40-e1 12 6
08-00-2b-c4-e6-aa
08-00-2b-20-10-56
08-00-5a-10-40-e1
VL
AN
2
VL
AN
2
VL
AN
2
VL
AN
4
VL
AN
4
VL
AN
6
VL
AN
6
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
Switch IVLV
LA
N 2
VL
AN
2
VL
AN
2
VL
AN
4
VL
AN
4
VL
AN
6
VL
AN
6
Port MAC adress Ag. Time
4 5 6 7 8 9
08-00-2b-16-50-a0
4 08-00-2b-16-50-a0 1
5 08-00-2b-20-10-56 7
7 08-00-2b-c4-e6-aa 2
2 08-00-5a-10-40-e1 12
08-00-2b-c4-e6-aa
08-00-2b-20-10-56
08-00-5a-10-40-e1
FID # 1VLAN 2
FID # 2VLAN 4
FID # 3VLAN 6
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
Switch IVL
Client A Client B
Porta 3 TRUNK
Porta 2VLAN 15VLAN 10
Server
VLAN 10
VLAN 15
Switch(config)#int fastEthernet 0/3Switch(config-if)#switchport mode trunkSwitch(config-if)#switchport trunk allowed vlan add 10,15Switch(config-if)#end
Porta 1
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
Switch IVL
Client A Client B
Porta 3
Porta 2VLAN 15VLAN 10
Server
VLAN 10
VLAN 15
Switch(config)#int fastEthernet 0/3Switch(config-if)#switchport mode multiSwitch(config-if)#switchport multi vlan add 10Switch(config-if)#switchport multi vlan add 15Switch(config-if)#end
Porta 1
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
Switch SVL
Client A Client B
Porta 3
Porta 2Porta 1 VLAN 15VLAN 10
VLAN 20VLAN Porte condivise
VLAN - Tabella di condivisione
20 porta 1 e 2
10 porta 3
15 porta 3
Server
VLAN 20
VLAN 10
VLAN 15
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
BridgeVLAN-aware
BridgeVLAN-aware
Access link
Trunk link(tutte le VLAN)
VLAN 15 Spanning treeporta Blocking
BridgeVLAN-aware
BridgeVLAN-aware
Access link
VLAN 15
Spanning treeporta Blocking
1o Caso
2o Caso
Trunk link(tutte le VLAN)
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
bridge 802.1DVLAN -unaware
Server B(VLAN 15)
Server A(VLAN 10)
Client del Server B
bridge 802.1DVLAN -unaware
Bridge 802.1QVLAN-aware
STPporta Blocking
Client del Server A
bridge 802.1DVLAN -unaware
Server B(VLAN 15)
Server A(VLAN 10)
Client del Server B
bridge 802.1DVLAN -unaware
Bridge 802.1QVLAN-aware
STPPorta Blocking
Client del Server A
1o Caso
2o Caso
(VLAN 10)
(VLAN 15)
(VLAN 10)
(VLAN 15)
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
DA/SA Type ……….
DA/SA Length LLC DSAP/SSAP ……….
DA/SA Length AA-AA-03 00-00-00 Type ……….
DA/SA Length AA-AA-03 PID ……….
DA/SA Length AA-AA-03 00-00-F8 Type ……….
1 - Ethernet
2 - 802.3 RFC 1042
3 - 802.3 Private SNAP
4 - 802.3 conforme a802.1H
5 - 802.3 con altriindirizzi LLC
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
DA/SA Type ……….
DA/SA Length AA-AA-03 00-00-00 Type ……….
Tipo di pacchetto
Ether Type/ LLC
Group ID
Ethernet 08-00 A
Ethernet 08-06 B
RFC 1042 08-00 C
RFC 1042 08-06 F
Protocol Group Database
Group ID VID
A 234
B 567
C 234
D 567
1
Group ID VID
A 123
B 123
789
Insieme diVID per la
porta 1
Insieme diVID per la
porta 2
PVID porta 1
PVID porta 2
(Port VLAN ID)
Ethernet
802.3 RFC 1042
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
1,7000,08002b201056
1,8000,08002b1020621,6000,08002bc4e6aa
Root albero 1
BA
C
2,7000,08002b201056
2,6000,08002b1020622,8000,08002bc4e6aa
Root albero 2
BA
C
Albero 1 VLAN 1, 3, 8, 10
Albero 2 VLAN 2, 4, 5, 6
Albero 1
Bridge Priority
Indirizzo MAC
Albero 2
Bridge Priority
Indirizzo MAC
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
A
6830RG1
(4420/4420)
8570RG1
(4420/4420)
C
4530SST(4420)
E
4860RG2
(4420/4860)
D
4970RG2
(4420/4860)
4420RG1
(4420/4420)
HG
4650RG2
(4420/4860)
K
4770RG2
(4420/4860)
M
F
4750SST(4420)
P
8840RG2
(4420/4860)
8720RG2
(4420/4860)
I
LJ
4940RG3
(4420/4940)
4690RG4
(4420/4690)
O
N
R
Q
S
Region 1
Region 2
B
Region 3 Region 4
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
4420RG1
(4420/4420)
4530SST(4420)
4750SST(4420)
4860RG2
(4420/4860)
Region 2
4940RG3
(4420/4940)
Region 3
4690RG4
(4420/4690)
Region 4
E D
F S
G
P
OR
Q
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
1,7000,08002b201056
1,8000,08002b1020621,6000,08002bc4e6aa
Root MSTI 1
BA
C
2,7000,08002b201056
2,6000,08002b1020622,8000,08002bc4e6aa
Root MSTI 2
BA
C
0,4420,08002b201056
0,6830,08002b1020620,8570,08002bc4e6aaCIST Root BA
C
Region 1
Region 1Region 1
Region 1
Region 1Region 1
Region 1
Region 1Region 1
MSTI 1
MSTI 2
Porzione del CST nella Region 1
“Switched LAN” - Mario Baldi, Pietro Nicoletti Copyright © 2002 - The McGraw-Hill Companies srl
Protocol Identifier
Protocol Version Identifier
BPDU Type
CIST Flags
CIST Root Identifier
CIST External Path Cost
CIST Regional Root Identifier
CIST Port Identifier
Message Age
Max Age
Hello Time
Forward Delay
Version 1 Length = 0
Version 3 Length
MST Configuration Identifier
CIST Internal Root Path Cost
CIST Bridge Identifier
CIST Remaining Hops
MSTI Configuration Messages
(può essere assente)
1–2
3
4
5
6–13
14–17
18–25
26–27
28–29
30–31
32–33
34–35
36
37–38
39–89
90–93
94–101
102
103
MSTI Flags
MSTI Regional Root Identifier
MSTI Internal Root Path Cost
MSTI Bridge Priority
MSTI Port Priority
MSTI Remaining Hops
1
2–9
10–13
14
15
16
MSTI Configuration Message
MSTI BPDU