Paul M wrote:
Ugo Bellavance wrote:
are you setting the switch port to 802.1q encapsulation which is how
multiple vlans are carried over a single ether?
I had a choice of
-not member
-member - untag
-member - tag
for each port
erm, I don't know dell switches; in cisco you set the port to be
'access' or 'trunk/802.1q', and if access you say which vlan.
We just ordered an HP procurve 2626. I've been reading the manual and
the config looks similar to the dell. Each port can be
- not member
- member -untag
- member -tag
From what I can understand, 'member -untag' is for ports that are in 1
vlan. 'member -tag' is for ports that are in more than 1 vlans.
BTW, it'd a Good Thing to set access ports, particularly for a DMZ and
non-firewalled lan segments to be "nonegotiate", so that if a host gets
compromised the attacker can't turn on trunking on the port and then
gain access to all your internal protected vlans!
I'll try to do that. Not sure how it is called in this switch. Anyone
using HP Procurve switches?
don't want to be rude but you probably need to read a tutorial on 802.1q
and vlans.
You're not rude, I totally agreee. Do you have any links to recommmend?
sorry, no idea.... google?
I am reading the HP advanced networking manual for the switch, quite
interesting.
We'll be replacing the dell by a HP 2626 shortly. It should be easier I
think (and more reliable).
although I was tempted by Dell, the old "noone got fired for buying
cisco" applied; I've found that cisco prices vary enormously, and ended
up with some 3560G and 3560E switches, which do a bit of routing as well
as being high-spec switches.
Paul
Ok, thanks a lot Paul.
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
