On Thu, Apr 29, 2010 at 5:12 PM, Martin Bähr < [email protected]> wrote:
> On Thu, Apr 29, 2010 at 08:58:43PM +1200, Joel Wiramu Pauling wrote: > > Vlan tags are used for shared physical media between switches/routers > which > > are vlan tag aware. End points can also be vlan aware (i.e a linux box). > > sure they can, but that's no longer secure. > unless you trust all the computers, in which case there is no more need > for seperate vlans at least for the original poster. (there may be other > reasons for using seperate vlans though) > In the physical wire case, the vlan is (I believe) associated with the port the computer is connected to. In a way, this is not secure since you can plug your machine to another port that uses different vlan. However, this also applies even if you have 2 switches. In the wi-fi example, we can assign different ssid to different vlan, securing each ssid with different WEP(, etc.). In both cases, each vlan provides a "virtual" switch/router if you like. Exactly with the same advantages and disadvantages of physical switch/router. This is of course from my basic understanding on how vlan works. So do correct me if I'm grossly mistaken. Cheers, -- Chris
_______________________________________________ LUGS Mailing list - [email protected] List FAQ: http://wiki.lugs.org.sg/LugsMailingListFaq Info page: http://www.lugs.org.sg/mailman/listinfo/slugnet To unsubscribe send an empty email to: [email protected]
