About Me
MikroTik Certified Switching Engineer (MTCSWE)
1 Introduction to Networking
1-1 Basic Networking Concepts
1-2 OSI Model
1-3 TCPIP Model
1-4 Network Devices
2 MikroTik RouterOS Basics
2-1 Introduction to RouterOS
2-2 RouterOS Interface Types
2-3 Basic Configuration
2-4 User Management
2-5 System Logging
3 Switching Fundamentals
3-1 Introduction to Switching
3-2 MAC Addresses
3-3 Ethernet Frame Structure
3-4 VLAN Basics
3-5 Trunking and Inter-VLAN Routing
4 MikroTik SwitchOS Basics
4-1 Introduction to SwitchOS
4-2 SwitchOS Interface Types
4-3 Basic Configuration
4-4 User Management
4-5 System Logging
5 VLAN Configuration
5-1 VLAN Creation and Configuration
5-2 VLAN Trunking Protocol (VTP)
5-3 Inter-VLAN Routing
5-4 VLAN Security
6 Spanning Tree Protocol (STP)
6-1 Introduction to STP
6-2 STP Operation
6-3 Rapid Spanning Tree Protocol (RSTP)
6-4 Multiple Spanning Tree Protocol (MSTP)
6-5 STP Configuration
7 Link Aggregation
7-1 Introduction to Link Aggregation
7-2 Link Aggregation Control Protocol (LACP)
7-3 Static Link Aggregation
7-4 Link Aggregation Configuration
8 Quality of Service (QoS)
8-1 Introduction to QoS
8-2 QoS Models
8-3 Traffic Shaping and Policing
8-4 QoS Configuration
9 Security Features
9-1 Introduction to Network Security
9-2 Port Security
9-3 Access Control Lists (ACLs)
9-4 DHCP Snooping
9-5 Dynamic ARP Inspection (DAI)
10 Advanced Switching Topics
10-1 Layer 3 Switching
10-2 Multicast Routing
10-3 Link Layer Discovery Protocol (LLDP)
10-4 Power over Ethernet (PoE)
11 Troubleshooting and Maintenance
11-1 Common Switching Issues
11-2 Troubleshooting Tools
11-3 Switch Maintenance
11-4 Backup and Restore
12 MikroTik Certification Exam Preparation
12-1 Exam Overview
12-2 Study Tips
12-3 Practice Questions
12-4 Exam Registration and Scheduling
5 VLAN Configuration Explained

5 VLAN Configuration Explained

1. VLAN Creation

VLAN creation involves defining a new VLAN on the switch. This is typically done by assigning a unique VLAN ID and a name to the VLAN. The VLAN ID is a number between 1 and 4094, with 1 being the default VLAN.

Example: To create a VLAN for the HR department with ID 10, you would use the command /interface vlan add name=HR_VLAN vlan-id=10. This command creates a new VLAN named "HR_VLAN" with the ID 10.

2. VLAN Assignment to Ports

VLAN assignment to ports involves configuring switch ports to belong to specific VLANs. This can be done in two modes: access mode and trunk mode. Access mode assigns a single VLAN to a port, while trunk mode allows multiple VLANs to pass through the port.

Example: To assign Port 1 to the HR VLAN in access mode, you would use the command /interface ethernet set [interface=ether1] vlan-mode=access vlan-id=10. This command configures Port 1 to only carry traffic for VLAN 10.

3. Trunk Configuration

Trunk configuration allows a single physical link to carry traffic for multiple VLANs. This is essential for connecting switches and ensuring that traffic for different VLANs can be transmitted over a single link.

Example: To configure Port 2 as a trunk port that carries VLANs 10, 20, and 30, you would use the command /interface ethernet set [interface=ether2] vlan-mode=trunk allowed-vlan=10,20,30. This command enables Port 2 to carry traffic for VLANs 10, 20, and 30.

4. VLAN Tagging

VLAN tagging involves adding a VLAN tag to Ethernet frames. This tag contains the VLAN ID, allowing network devices to identify and route traffic to the correct VLAN. VLAN tagging is essential for managing traffic in networks with multiple VLANs.

Example: When a device sends data to another device in a different VLAN, the switch adds a VLAN tag to the Ethernet frame. The receiving switch reads the VLAN tag and routes the frame to the appropriate VLAN, ensuring that traffic is isolated and managed correctly.

5. Inter-VLAN Routing

Inter-VLAN routing enables communication between devices in different VLANs. This is typically achieved by configuring a router or a Layer 3 switch to route traffic between VLANs. Inter-VLAN routing is crucial for creating a unified network where devices in different segments can communicate.

Example: Suppose you have a router with multiple interfaces, each connected to a different VLAN. You can configure each interface with the appropriate VLAN IP address. When a device in the HR VLAN (192.168.10.10) needs to communicate with a device in the IT VLAN (192.168.20.20), the router will route the traffic between these VLANs, ensuring that the communication is successful.

© 2024 Ahmed Baheeg Khorshid. All rights reserved.