Example 7, dynamic egress application – Enterasys Networks 2200 User Manual

Page 261

Example 8, Using Dynamic Egress to Control Traffic

Network Tools Screens

11-25

The dynamic Port VLAN List is a temporary list used in the dynamic egress function to keep track
of the VLANs and the associated users that reside off a dynamic-egress enabled port.

11.4 EXAMPLE 8, USING DYNAMIC EGRESS TO CONTROL TRAFFIC

In this simple example (

Figure 11-2

), assume that there are four ports on the SmartSwitch device

attached to PCs supporting both protocols AppleTalk (809B and 80F3) and IP. Two PCs support IP
only. The AppleTalk frame traffic is to be contained so only the users running the AppleTalk
protocol can communicate with each other and not flood the network with AppleTalk frames.
However, all users are to have access to a web server connected to Port 7.

Figure 11-2

Example 7, Dynamic Egress Application

Solving the Problem

In this example, Switch 1 (S1) has already been configured with a default VLAN 0001 associated
with FID 0001 as the PVID on all ports.

The following additional steps are required to configure the switch to solve this problem.

1. Define a new VLAN (VLAN ID 2) and filtering database (FID 2) using the Device VLAN

Configuration screen.

2. Create a Layer 2 rule to associate the protocol AppleTalk 809B and 80F3 to VLAN ID 2 (VID

2) using the VLAN Classification Configuration screen. This rule is assigned to all ports.

3. Enable the dynamic egress control on VLAN 2 using the Network Tools command

(dynamic_egress enable 2).

30691_57

Web

Server

AppleTalk

1 2 3 4 5 6

PCs

AppleTalk