?– Possible security vulnerabilities: A switched network that has been designed with
little attention to security requirements at the access layer can compromise the integrity
of the entire network.
Implementing VLANs and Trunks 15
A poorly designed network always has a negative impact and becomes a support and cost
burden for any organization. Figure 2-1 shows a network with a single broadcast domain.
VLANs can help alleviate some of the problems associated with this design.
Figure 2-1 Network with Single Broadcast Domain
VLAN Overview
A VLAN is a logical broadcast domain that can span multiple physical LAN segments. In
the switched internetwork, VLANs provide segmentation and organizational ?¬‚exibility.
You can design a VLAN structure that lets you group stations that are segmented logically
by functions, project teams, and applications without regard to the physical location of the
users. You can assign each switch port to only one VLAN, thereby adding a layer of
security. Ports in a VLAN share broadcasts; ports in different VLANs do not. Containing
broadcasts in a VLAN improves the overall performance of the network.
In the switched internetwork, VLANs provide segmentation and organizational ?¬‚exibility.
Pages:
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47