Campus Network

VnPro Cisco Authorised Training Center
MC LC
Chng 1: MNG CAMPUS............................................................................................... 1

1.1 Gii thiu mng Campus .............................................................................................1
1.2 Mng Campus truyn thng.........................................................................................2
1.2.1 Vn kh nng hot ng ca mng v gii php ..............................................2
1.2.2 Lut 80/20 ...........................................................................................................3
1.3 Cc m hnh mng Campus .........................................................................................5
1.3.1 M hnh mng chia s ..........................................................................................6
1.3.2 M hnh phn on LAN .....................................................................................6
1.3.3 M hnh lu lng mng......................................................................................7
1.3.4 M hnh mng d on trc ...............................................................................8
1.4 M hnh mng ba lp ca Cisco...................................................................................8
1.4.1 Lp Access ..........................................................................................................9
1.4.2 Lp Distribution ..................................................................................................9
1.4.3 Lp Core ...........................................................................................................10
1.5 M hnh Modular trong thit k mng Campus ..........................................................10
1.5.1 Khi Switch.......................................................................................................11
1.5.2 Khi Core ..........................................................................................................13
1.5.3 Cc khi building khc ......................................................................................16
1.6 Cc sn phm ca Cisco trong mng Campus ............................................................18
Chng 2: VLAN, TRUNK, V VTP .............................................................................. 21
2.1 Mng LAN o (Virtual LAN - VLAN) ......................................................................21
2.1.1 Cc kiu thnh vin ca VLAN (VLAN Membership) .......................................21
2.1.2 Trin khai VLAN...............................................................................................22
2.2 VLAN Trunk.............................................................................................................23
2.2.1 Nhn dng cc frame VLAN ..............................................................................24
2.2.2 Giao thc trunk ng (Dynamic Trunking Protocol - DTP)................................26
2.3 VLAN Trunking Protocol - VTP................................................................................27
2.3.1 Min VTP ..........................................................................................................27
2.3.2 Cc ch (mode) VTP.....................................................................................27
2.3.3 Qung b VTP ...................................................................................................28
2.3.4 S lt bt (pruning) VTP .................................................................................30
2.3.5 G ri (trobleshooting) VTP ..............................................................................32
Chng 3: SPANNING TREE PROTOCOL - STP ......................................................... 33
3.1 Tng quan v IEEE 802.1D .......................................................................................33
3.1.1 Spanning Tree l g v ti sao phi s dng n? .....................................................33
3.1.2 Hai khi nim c bn ca STP ...............................................................................36
3.1.3 Cc bc ra quyt nh ca STP ............................................................................37
3.1.4 S hi t STP ban u (Initial STP Convergence).................................................38
3.1.5 Cc trng thi ca STP...........................................................................................43
3.1.6 B nh thi gian STP............................................................................................45
3.1.7 Hai loi BPDU...................................................................................................47
3.1.8 Qu trnh thay i topology................................................................................48
3.2 Cc kiu STP.............................................................................................................51
3.2.1 Common Spanning Tree (CSP) ..........................................................................51
3.2.2 Per-VLAN Spanning Tree (PVSP) .....................................................................52
3.2.3 Per-VLAN Spanning Tree Plus (PVSP+) ...........................................................52
Chng 4: CHUYN MCH A LP MLS................................................................. 52
4.1 Gii thiu v chuyn mch a lp (Multilayer Switching MLS)..............................52
4.2 Cc yu cu ca MLS ................................................................................................53
THIT K MNG CAMPUS THEO CNG NGH CISCO V Th H
4.3 Cc th tc ca MLS (MLS Procedure) .....................................................................53
4.3.1 Pht hin MLSP.................................................................................................54
4.3.2 Nhn dng cc gi i din ................................................................................55
4.3.3 Nhn dng cc gi enable...................................................................................56
4.3.4 Cc gi theo sau.................................................................................................58
4.4 S dng cc topology mng cho php MLS ...............................................................58
4.5 CEF (Cisco Express Forwarding) chuyn tip vi mc ch ring bit ca Cisco. ......59
4.5.1 Qu trnh chuyn mch (Process Switching) ......................................................59
4.5.2 Chuyn mch nhanh (Fast Switching) ................................................................60
4.5.3 Chuyn mch trong iu kin tt nht (Optimum Switching) .............................61
4.5.4 Qu trnh chuyn tip CEF (CEF Forwarding Process).......................................61
Chng 5: KIN TRC AVVID CA CISCO................................................................. 63
5.1 Gii thiu ..................................................................................................................63
5.2 Tng quan v mt kin trc AVVID ..........................................................................63
5.2.1 Phn cng..........................................................................................................63
5.2.2 Phn mm ..........................................................................................................65
5.3 Kin trc hi t..........................................................................................................65
5.3.1 Pha 1 H thng Lagacy Voice vi li ch Toll Bypass .....................................65
5.3.2 Pha 2 thc thi song song h thng Lagacy Voice v IP Telephone...................67
5.3.3 Pha ba Kin trc hi t....................................................................................68
Ph lc: HOT NG CHUYN MCH.................................................................... 69
1. Hot ng chuyn mch lp 2 .......................................................................................69
1.1 Trong sut tnh cu ni ..........................................................................................69
1.2 Qu trnh mt frame i trong mng switch lp .......................................................71
2. Hot ng chuyn mch a lp MLS (Multi-Layer Switching) ......................................72
2.1 Cc kiu chuyn mch a lp.................................................................................73
2.2 Qu trnh mt gi tin di chuyn trong.....................................................................73
2.3 Cc trng hp ngoi l ca mch a lp...............................................................75
3. Cc bng c s dng trong chuyn mch: ..................................................................75
3.1 B nh ni dung i ch CAM (Content Addressable Memory): ............................75
3.2 B nh ni dung i ch bc ba TCAM (Ternary Content Addressable Memory) ...76
TI LIU THAM KHO ...................................................................................................... 77
THIT K MNG CAMPUS THEO CNG NGH CISCO V Th H

Chng 1: MNG CAMPUS

1.1 Gii thiu mng Campus
Lch s ca mng my tnh thng xuyn dao ng, t cc mng ban u c thit k
cung cp truy cp n tng i, chia s ti nguyn trn my tnh ln (mainframe), ri n kin
trc mng phn tn nm 1990. Nhng my tnh ln vn khng b loi b, n c dng cho mt
vi nhim v x l b (batch processing) trong ngn hng v cc cng ty bo him. Cc my ch
trnh v ng dng khc. Mng c pht trin t n cng ngh n gin nht, r nht v c
NetWave hay NT vn k tha nh l mt my ch file/print v sm chy hu ht cc chng
tin cy nht, thit lp v duy tr kt ni n cc ngun ti nguyn.

Cch y 20 nm, ta chng kin s ra i ca mng LAN, s pht trin ca mng WAN
v Internet. Internet thay i cuc sng chng ta hng ngy, vi s gia tng s lng ca cc dch
v giao dch trc tuyn, gio dc, v gii tr, iu ny thc y con ngi tm ra cc phng php
mi truyn thng vi nhau.
tnh kt ni li vi nhau. Internetwork ngy cng ln mnh h tr cho cc nhu cu truyn

Lin mng (internetworing) l s truyn thng gia mt hay nhiu mng, gm c nhiu my
thng khc nhau ca h thng u cui. Mt internetwork i hi nhiu giao thc v tnh nng
cho php s m rng ng thi n c iu khin m khng c s can thip bng tay. Cc
internetwork ln gm c 3 thnh phn nh sau:
Mng Campus: gm c cc user kt ni cc b trong mt hay mt nhm cc ta nh.
Mng WAN: kt ni cc mng Campus li vi nhau.
Kt ni t xa: lin kt cc nhnh phng lm vic v cc user n l ti mng Campus hay
Internet.
Hnh 1.1 l mt v d v mt internetwork in hnh:
THIT K MNG CAMPUS THEO CNG NGH CISCO Trang 1

Thit k mt internetwork l mt cng vic th thch nng lc i vi ngi thit k. thit

k mt internetwork c tin cy v c tnh m rng, th ngi thit k phi hiu r v ba thnh
phn quan trng ca mt internetwork c nhng i hi thit k khc nhau. Mt internetwork
gm c 50 node nh tuyn mt li c th em li vn phc tp, dn n kt qu khng th
on trc c. S c gng ti u tnh nng hng ngn cc node ca internetwork thm ch em
li vn phc tp nhiu hn.
1.2 Mng Campus truyn thng

Trong cc nm 1990, mng Campus truyn thng bt u l mt mng LAN v ln dn cho
n khi cn phn on mng duy tr kh nng hot ng ca mng. Trong thi i m rng
nhanh chng, thi gian p ng l l do th hai to s chc chn cho cc chc nng ca mng.
Bn cnh , phn ln cc ng dng phi c lu tr v chuyn tip nh email, v c mt iu
cn thit na l cht lng cc dch v ty chn.
Bng cch nhn li cc cng ngh truyn thng, ta s thy ti sao duy tr hot ng mng li l
mt thch thc. Cc mng Campus in hnh chy trn 10BaseT, 10Base2 (ThinNet) v kt qu
l min ng trong mng ln (cha ni n min broadcast cng ln). Mc d c nhng gii
hn ny, nhng Ethernet vn c dng v n c tnh m rng, tnh hiu qu v khng t so vi
cc ty chn khc (nh Token Ring). ARCnet c dng trong mt vi mng, nhng Ethernet v
ARCnet khng tng thch vi nhau nn mng tr thnh hai thc th ring bit. Ethernet tr
thnh th chnh, trong khi ARCnet tr thnh th yu.
Mng Campus c th d dng m rng thnh nhiu building, v vic s dng bridge kt
ni cc buiding cng lm gim min ng , nhng min broadcast vn ln. Ngy cng c
nhiu user ni vo hub lm cho mng hot ng v cng chm.
1.2.1 Vn kh nng hot ng ca mng v gii php

Tnh sn sng v kh nng hot ng l hai vn chnh i vi mng Campus truyn thng.
Tnh sn sng b nh hng bi s lng user c gng truy cp mng cng mt thi im, cng
vi tin cy ca chnh mng . Kh nng hot ng trong mng Campus truyn thng bao
gm cc vn nh: ng , bng thng, broadcast, multicast.
ng (Collision)
Mt mng Campus truyn thng c min ng ln, v vy tt c cc dch v c th thy v
ng vi nhau. Nu mt host thc hin broadcast, th tt c cc thit b khc u nghe, thm
ch chnh n cng c gng truyn. V nu mt thit b gp s c do vic truyn lin tc, th n c
th lm down ton b mng.
Cui 1980, bridge c dng gim min ng . Tuy min ng nh hn nhng mng
vn c min broadcast ln v cc vn v min broadcast vn cn tn ti. Bridge cng gii
quyt c vn gii hn v khong cch, bi v n c chc nng repeater nn m rng c
cc on mng vt l.
Bng thng (Bandwidth)
Bng thng ca mt on mng c o bng s lng d liu c truyn ti bt k thi
im no. Bng thng cng ging nh ng nc, m lng nc chy trong ng ph thuc vo
hai yu t sau:
rng.

Khong cch.
rng l dng nc v bng thng l kch thc ng. Nu ta c mt ng ch c ng knh
1/4 inch, th ta khng ly c nhiu nc qua n.
Vn th hai l khong cch. ng cng di, th cng nhiu nc b git, ta c th t
repeater gia ng, nhng ta cn phi hiu l tt c cc ng u c s tiu hao tn hiu.
Gii quyt vn bng thng duy tr gii hn khong cch v thit k mng vi cc on
mng thch hp cha switch v router. S tc nghn xy ra trn cc on mng khi c qu nhiu
thit b c gng s dng cng mt bng thng. S phn on mng hp l cng khng loi b
c vn v bng thng, khng bao gi c bng thng cho tt c user, l s tht m ta
phi chp nhn, nhng ta vn c th lm cho n tt hn.
Broadcast v multicast
Cc giao thc gy ra vn broadcast nh IP, ARP, NetBIOS, IPX, SAP, v RIP. Tnh nng
ny cng c trong h iu hnh ca Cisco Router, tuy nhin nu vic thit k v thc thi ng
cch c th lm gim bt vn ny. Vic lc gi, a vo hng i v chn giao thc nh
tuyn hp l l mt v d cho thy lm th no Cisco Router c th lm gim bt vn
broadcast.
Multicast cng gy nn vn nu cu hnh khng ng cch. Multicast l broadcast nhng
c nh trc i vi mt nhm cc user. Vi nhm multicast ln hoc ng dng bng thng
chuyn dng nh ng dng IPTV ca Cisco, th lu lng multicast c th dng hu ht bng
thng v ti nguyn.
gii quyt vn bng thng, ta s phn on mng vi bridge, router v switch. Tuy
gim c min broadcast nhng khng loi b c hin tng nghn c chai ca router. Vic
router x l mi gi c truyn i trn mng s gy nn nghn c chai nu lung lu lng pht
i ln.
VLAN cng l mt gii php, nhng VLAN ch l min broadcast vi ng bin nhn to.
Mt VLAN l mt nhm cc thit b trn cc phn on mng khc nhau, l mt min
nh port m ta s thm vo mt thit b trong mng. Ta c th thm mt thit b vo bt k port

broadcast bi ngi qun tr mng. Li ch ca VLAN l v tr vt l khng cn l nhn t xc
no ca switch v ngi qun tr mng s gn port cho VLAN. Lu l ch c router hoc switch
lp 3 mi c th truyn thng gia cc VLAN khc nhau.
1.2.2 Lut 80/20

Mng Campus truyn thng t cc user v cc nhm trong cng mt v tr vt l. Nu thu
v c kt ni n cng on mng vt l chia s ti nguyn mng.

mt ngi bn hng, th h phi ngi trong cng mt v tr vt l nh ngi tuyn dng bn hng
Lut 80/20 c ngha l 80% lu lng ca user l trn on mng cc b, cn li 20% hoc t
hn l qua router hoc bridge n cc on mng khc. Nu nhiu hn 20% lu lng qua thit
b phn on mng, th pht sinh vn v kh nng hot ng ca mng. Hnh 1.2 sau biu din
mt mng 80/20 truyn thng.

hot ng ca mng trong mng 80/20 bng cch chc chn rng tt c cc ti nguyn mng cho
Bi v ngi qun tr mng chu trch nhim thit k v thc hin, nn h ci tin kh nng
user c cha bn trong on mng cc b. Ti nguyn bao gm my ch, my in, th mc

dng chung, phn mm, v cc ng dng.
Lut mi 20/80
Vi cc ng dng v tnh ton mi da trn web, bt k mt PC no cng l subcriber v
publisher bt k thi im no. Bi v vic kinh doanh ang ko cc my ch t v tr t xa v
to thnh cc tri my ch (server farm, ging nh mt my tnh ln) kim sot dch v mng
c tnh bo mt, gim chi ph v d qun tr, nn lut 80/20 tr nn li thi v khng cn lm
vic trong mi trng ny na. By gi tt c lu lng phi qua backbone ca Campus, ngha l
ta c lut mi 20/80, trong 20% l lu lng trn on mng cc b v 80% l lu lng qua
on mng ly cc dch v mng. Hnh 1.3 biu din mng 20/80 mi.

Vn ca lut 20/80 l h thng cp in v cu trc mng khng nh cc router. N c kh

nng x l s lng khng l cc gi mt cch nhanh chng v hiu qu tc cp in.
VLAN
Vi lut 20/80 c nhiu user hn cn truyn qua min broadcast, v iu ny gy thm gnh
nng cho vic nh tuyn hoc chuyn mch lp 3. Bng cch s dng VLAN, bn trong m hnh
mng Campus, ta c th iu khin c lu lng v user truy cp d dng hn trong mng
Campus truyn thng. VLAN lm gim min broadcast bng cch s dng router hoc switch
thc hin cc chc nng lp 3. Hnh 1.4 biu din lm th no to VLAN trong mng.
hiu c VLAN, bi v cch xy dng truyn thng trong mng Campus ang c thit k li
Trong "chng 3: VLAN, Trunk v VTP", s ni r hn v VLAN. Mt quan trng l ta phi
v VLAN l mt nhn t ln trong vic xy dng m hnh mng Campus mi.
1.3 Cc m hnh mng Campus
thng nm trong cng mt khu vc a l. Thng thng cc mng Campus gm c Ethernet,

Mt mng Campus l gm c nhiu LAN trong mt hoc nhiu building, tt c cc kt ni
Wireless LAN, Fast Ethernet, Fast EtherChannel, Gigabit Ethernet v FDDI.

Vic hiu c lung lu lng l phn quan trng trong thit k mng Campus. Trong khi
ngi ta c th s dng cc cng ngh VLAN tc cao ci tin tc vn chuyn lu lng,
th cng cn cung cp mt thit k ph hp vi cc lung lu lng. Lu lng mng c th
c qun l v chuyn i mt cch hiu qu v ta c th to tnh co dn cho mt mng Campus
h tr cn thit cho tng lai.
Sau y l cc m hnh mng c dng phn loi v thit k mng Campus:
M hnh mng chia s (Shared Network Model).
M hnh phn on LAN (LAN Segmentation Model).
M hnh lu lng mng (Network Traffic Model).

M hnh mng d on trc (Predictable Network Model).
1.3.1 M hnh mng chia s

u cc nm 1990, mng Campus c xy dng theo kiu truyn thng ch c mt LAN
n gin cho tt c cc user kt ni n v s dng. Tt c cc thit b trn LAN bt buc phi
chia s bng thng sn c. Mi trng truyn nh Ethernet v TokenRing u c gii hn v
khong cch cng nh gii hn s thit b c kt ni vo LAN.
Kh nng hot ng v tnh sn sng ca mng s gim nu s thit b kt ni tng dn. V d
nh tt c cc thit b ca Ethernet LAN u chia s bng thng bn song cng 10Mbps. Ethernet
cng s dng CSMA/CD quyt nh khi no mt thit b c th truyn d liu trn on LAN
chia s ny. Trong cng thi im nu c nhiu hn mt thit b c nhu cu truyn th s xy ra
ng , v tt c cc thit b phi lng nghe v ch truyn li, ngi ta gi n l min ng
. Trong khi TokenRing LAN th khng xy ra ng v cc trm ch c php truyn khi
nhn c th bi.
C mt cch lm gim tt nghn mng l phn on mng, hoc chia mt LAN thnh nhiu
min ng ring bit bng cch s dng bridge chuyn tip frame d liu lp 2 . Bridge cho
php gim s thit b trn mt on, do s gim c xc sut ng trn cc on ng
thi tng gii hn khong cch vt l v n hot ng nh l mt repeater.
Tuy nhin, cc frame cha a ch broadcast (FF:FF:FF:FF:FF:FF) u n tt cc cc on.
Cc frame broadcast thng c dng kt hp cc yu cu v thng tin hoc dch v, bao
gm cc thng bo v dch v mng. IP s dng broadcast cho giao thc ARP gi yu cu hi
a ch MAC tng ng vi a ch IP. Cc frame broadcast cn c dng gi cc yu cu
DHCP, IPX, GNS (Get Nearest Server), SAP (Service Advertising Protocol), RIP, tn NetBIOS.
Mt min broadcast l mt nhm cc on mng m broadcast c trn qua. Lu lng
multicast l lu lng c nh trc cho mt nhm cc user c thit lp c th, m khng
quan tm n v tr ca n trong mng Campus. Cc frame multicast cng qua tt c cc on
mng bi v n l mt hnh thc ca broadcast. Mc d trm u cui phi chn mt nhm
multicast cho php nhn d liu multicast, nhng bridge phi cho lu lng trn qua tt c cc
on mng v n khng bit c trm no l thnh vin ca nhm multicast. Cc frame
multicast chia s bng thng trn mt on mng, nhng khng bt buc s dng ti nguyn
CPU trn mi thit b kt ni. Ch c cc CPU ng k l thnh vin ca nhm multicast mi
thc s x l cc frame ny. Lu lng broadcast s gy nn hai vn : th nht l c quyn
bng thng sn c, v th hai l tt c cc trm u cui u phi lng nghe gii m v x l
mi frame broadcast.
1.3.2 M hnh phn on LAN

Phn on mng s gim lu lng v s trm trn mt on khc phc vn ng v
broadcast. Vic gim s lng trm s gim c min ng v c t my hn cng c nhu
cu truyn. i vi vic ngn chn broadcast, gii php l cung cp mt hng ro ti bin ca
on LAN broadcast khng qua c hoc chuyn tip trn . Ngi thit k c th dng
router hoc switch. Ta c th dng router kt ni cc mng con nh v nh tuyn cc gi lp
3. Router khng cho php lu lng broadcast i qua, do broadcast khng th chuyn tip qua
cc mng con khc. Hnh 1.5 biu din phn on mng bng router:

Ngoi ra ta cn phn on LAN bng switch. Switch cung cp kh nng thc thi cao hn vi
bridge. Mi port ca switch l mt min ng ring l v khng truyn ng qua port khc,
bng thng chuyn dng trn mi port (khng chia s bng thng). Ngi ta gi switch l multi-
tuy nhin cc frame broadcast v multicast vn trn qua tt c cc port ca switch. phn chia
cch logic thnh cc on ring bit. VLAN l mt nhm cc port vn chia s mi trng truyn
min broadcast ta s dng VLAN bn trong mng chuyn mch. Mt switch s chia cc port mt
ca on LAN. Vn v VLAN s c tm hiu r chng 3.
1.3.3 M hnh lu lng mng

thit k v xy dng thnh cng mng Campus th ta phi hiu lu lng sinh ra bi vic
s dng cc ng dng cng vi lung lu lng i v n t ton th user. Tt c cc thit b s
truyn d liu qua mng vi cc kiu d liu v ti khc nhau.
Cc ng dng nh: email, word, print, truyn file, v duyt web, s mang cc kiu d liu
bit trc t ngun n ch. Tuy nhin cc ng dng mi hn nh video, TV, VoIP c kiu
lu lng kh on trc c.
Theo truyn thng, cc user s dng cc ng dng ging nhau thng c t vo cng
nhm, cng vi server m n thng truy cp n, nhng nhm ny l mng lun l hoc vy l,
vi tng l gii hn phn ln lu lng gia client v server trong phn on mng cc b.
Trong trng hp cc LAN chuyn mch kt ni bi cc router cp trc th c client v
server u c kt ni n switch lp 2. Kt ni ny cung cp kh nng hot ng tt khi cc
tiu ti lu lng trn router backbone.
Khi nim ca kiu lu lng ny c bit nh lut 80/20. Trong mt mng Campus c
thit k ng cch th 80% lu lng trn on mng nht nh l cc b. V t hn 20% l lu
lng c chuyn ra ngoi mng backbone.
hp na. Ti nguyn no c sn ci tin kh nng hot ng ca mng? Do ph tn v tnh rc

Nu backbone b nghn th ngi qun tr mng s nhn ra rng, lut 80/20 khng cn ph
dng lut 80/20 gim lu lng qua backbone, ngi qun tr c th thc hin hng gii
ri m vic nng cp hon thin Campus backbone l la chn khng mong mun. Thay v s
quyt nh sau:
Gn li ti nguyn sn c mang cc user v cc server li gn vi nhau.
Chuyn cc ng dng v cc file n cc server khc nhau bn trong mt nhm.

Chuyn cc user mt cch logic (VLAN) hoc vt l gn nhm ca n.

Thm nhiu server m c th mang ti nguyn li gn cc nhm tng ng.
Nh vy, vic tun theo lut 80/20 trong cc mng Campus hin nay tr nn kh khn i
vi ngi qun tr mng. Trong m hnh mi ca mng Campus, lu lng tr thnh lut 20/80
cc b v ra ngoi backbone. Kiu lu lng ny t ra trng ti ln hn trong mng backbone

ngha l ch c 20% lu lng l cc b, trong khi c t nht 80% lu lng di chuyn trn mng
lp 3.
Chuyn tip lp 3 i hi phi x l ti nguyn nhiu hn bi v cc gi phi c kim tra
trn lp cao hn, iu ny c th gy nn tnh trng nghn c chai trong mng Campus, nu
khng thit k cn thn.
Nh vy, mt mng Campus vi nhiu VLAN tr thnh kh khn trong vic qun l. Trc
20/80, cc thit b u cui cn truyn thng vi nhiu VLAN khc. Vic o lng lu lng v
kia, cc VLAN thng s dng mt cch logic cha cc nhm v lu lng ph bin. Vi lut
thit k li mng Campus tr nn qu nng n theo kp m hnh lut 20/80.
1.3.4 M hnh mng d on trc

tng l ta nn thit k mt mng vi kh nng c th d on cung cp s bo dng
thp v tnh li ch cao. V d mt mng Campus cn khi phc li t cc hng hc v thay i
k thut nhanh chng trong mt kiu nh trc. Mng phi c tnh m rng h tr d dng
cho s pht trin trong tng lai v nng cp hon thin. Vi s a dng rng ln ca nhiu giao
thc v lu lng multicast, th mng phi c kh nng h tr lut 20/80. Mt khc, thit k
mng quanh cc lung lu lng thay v mt kiu lu lng ring bit.
lin quan n ngi dng u cui. Bng 1.1 cho bit danh sch cc kiu lu lng ny, cng vi
Lung lu lng trong mng Campus c th phn thnh ba loi, da v tr cc dch v mng
phm vi ca n.
Phm vi ca
Kiu dch v V tr ca dch v
lung lu lng
Cc b Trn cng on Ch c lp Access

mng/VLAN vi user
T xa Trn on mng/LAN T lp Access n lp

khc vi user Distribution
Enterprise Gia cc user trong mng T lp Access n lp

Campus Distribution v lp Core
Bng 1.1: Cc kiu dch v mng
Lp Access, Distribution v Core l ba lp ca m hnh thit mng ba lp ca Cisco m ta s

tm hiu trong phn tip theo.
1.4 M hnh mng ba lp ca Cisco

Ta c th thit k mng Campus mi lp h tr cc lung lu lng hoc dch v nh

cp trong bng 1.1. Cisco a ra m hnh thit k mng cho php ngi thit k to mt mng
lun l bng cch nh ngha v s dng cc lp ca thit b mang li tnh hiu qu, tnh thng
minh, tnh m rng v qun l d dng.
M hnh mng ba lp c biu din trong hnh 1.6:
cung cp c chc nng vt l ln lun l mi im thch hp trong mng Campus. Vic hiu
M hnh ny gm c ba lp: Access, Distribution, v Core. Mi lp c cc thuc tnh ring
r mi lp v chc nng cng nh hn ch ca n l iu quan trng ng dng cc lp ng

cch qu trnh thit k.
1.4.1 Lp Access
Lp Access xut hin ngi dng u cui c kt ni vo mng. Cc thit b trong lp
ny thng c gi l cc switch truy cp, v c cc c im sau:
Chi ph trn mi port ca switch thp.
Mt port cao.
M rng cc uplink n cc lp cao hn.
Chc nng truy cp ca ngi dng nh l thnh vin VLAN, lc lu lng v giao
thc, v QoS.
Tnh co dn thng qua nhiu uplink.
1.4.2 Lp Distribution
Thit b lp ny c gi l cc siwtch phn pht, v c cc c im nh sau:

Lp Distribution cung cp kt ni bn trong gia lp Access v lp Core ca mng Campus.
Thng lng lp ba cao i vi vic x l gi.

Chc nng bo mt v kt ni da trn chnh sch qua danh sch truy cp hoc lc
gi.
Tnh nng QoS.

Tnh co dn v cc lin kt tc cao n lp Core v lp Access.
1.4.3 Lp Core
Core thng xut hin backbone ca mng, v phi c kh nng chuyn mch lu lng mt
Lp Core ca mng Campus cung cp cc kt ni ca tt c cc thit b lp Distribution. Lp
cch hiu qu. Cc thit b lp Core thng c gi l cc backbone switch, v c nhng thuc
tnh sau:
Thng lng lp 2 hoc lp 3 rt cao.
Chi ph cao
C kh nng d phng v tnh co dn cao.
Chc nng QoS.
1.5 M hnh Modular trong thit k mng Campus

Nh ta bit, mt mng c xy dng v bo tr tt nht bng cch s dng m hnh mng
ba lp ca Cisco nh c gii thiu trong phn 1.4. Ta c th thit k mt mng Campus
mng phn cp l n v chc nng c bn (module). Cc module ny c sp xp theo kch c

trong kiu logic, s dng phng php modular. Trong phng php ny, mi lp ca m hnh
thch hp v kt ni vi nhau, v n cho php tnh co dn v m rng trong tng lai.

Ta c th chia mng Campus thnh cc phn c bn sau:
Khi chuyn mch (switch): l mt nhm cc switch thuc lp Access v lp
Distribution.
Khi li (core): l backbone ca mng Campus.
mng Campus, nhng n c thit k tch bit v thm vo thit k mng. Cc khi ny gm
Cc khi lin quan khc c th tn ti mc d n khng gp phn vo ton b chc nng ca
c:
Khi Server Farm: gm mt nhm cc server cng vi cc switch Access v
Distribution.
Khi qun l (Management): gm mt nhm ti nguyn qun l mng cng vi
switch Access v Distribution.
Khi Enterprise bin (Enterprise Edge): gm mt tp cc dch v lin quan n vic
truy cp mng bn ngoi cng vi cc switch Access v Distribution.
Khi nh cung cp dch v bin (Service Provider Edge): cc dch v mng bn
ngoi c s dng bi mng Enterprise, l cc dch v vi cc giao tip khi
enterpride bin.
Tp hp cc khi trn c gi l m hnh mng tng hp Enterprise. Hnh 1.7 biu din mt
Modular thit k Campus. Ch mt iu l mi building c gii hn trong mt khu vc v
c kt ni n khi Core.

1.5.1 Khi Switch

Nh ta bit mng Campus c chia thnh 3 lp (lp Access, Distribution, v Core), khi
Switch cha cc thit b chuyn mch t lp Access v lp Distribution, sau tt c cc khi
switch c kt ni vo trong khi Core cung cp kt ni end-to-end xuyn sut mng
Campus.
Distribution. Cc chuyn mch lp 2 c t trong phng dy cp in (lp Access) kt ni

Khi Switch cha hn hp cc chc nng ca lp 2 v lp 3 v n cha cc lp Access v
ngi dng u cui n mng Campus. Vi t l mt ngi dng u cui trn mt port ca
switch th mi user nhn c bng thng ring bit.
Mi switch ca lp Access s kt ni n thit b trong lp Distribution. y, chc nng
lp 2 l vn chuyn d liu gia tt c cc switch truy cp n im kt ni trung tm. Chc nng
lp 3 cng c cung cp trong cch thc nh tuyn v cc dch v mng khc (bo mt,
QoS,). V vy, thit b ca lp Distribution l mt chuyn mch a lp.
Lp Distribution cng bo v khi Switch khi cc li no , v d nh vic broadcast s
khng c truyn n cc khi Switch khc v khi Core. V vy, giao thc Spanning Tree s
gii hn mi khi Switch nh ngha v iu khin tt min Spanning Tree.

Cc switch lp Acces c th h tr VLAN bng cch gn cc port nh s VLAN r rng.

V vy, cc trm kt ni n cc port c cu hnh cho cng mt VLAN c th cng thuc mt
mng con lp 3. Tuy nhin, iu ng quan tm l mt VLAN c th h tr nhiu mng con.V
switch cu hnh da vo port cho VLAN (khng phi l a ch mng), nn bt c trm no ni
vo mt port u thuc min a ch mng. Chc nng ca VLAN cng ging nh mi trng
truyn ca truyn thng, v cho php bt k a ch mng kt ni n.
Trong m hnh thit k mng, ta khng nn ko di cc VLAN n cc switch Distribution
xa. Lp Distribution lun l ng bin ca cc VLAN, mng con v broadcast. Mc d cc
switch lp 2 c th ko di VLAN n cc switch khc xa, nhng n s hot ng khng tt.
Lu lng VLAN khng i qua khi Core ca mng.
Kch thc ca khi Switch
Ta nn xem xt mt vi yu t quyt nh kch thc thch hp cho khi Switch. Phm vi ca
cc switch trong khi Switch c kch c rt linh ng. lp Access, s la chn switch thng
da trn mt port hoc s user c kt ni. Cn lp Distribution ph thuc s switch ca
lp Access. Cc nhn t phi c xem xt l:
Kiu lu lng.
Tng dung lng chuyn mch lp 3 ti lp Distribution.
S ngi c kt ni n switch ca lp Access.
Ranh gii a l ca mng con hoc VLAN.
Kch thc ca min Spanning Tree.
thng khng ng lm. Thng thng khng qu 2000 user c t bn trong mt khi
Vic thit k mt khi Switch ch da vo s ngi dng hoc s trm cha trong khi
Switch. Tuy nhin vic c lng kch thc ban u cng em li nhiu li ch v vy ta phi
da vo cc yu t sau:
Loi lu lng v hot ng ca n.
Kch thc v s lng ca cc nhm lm vic (workgroup).
Da vo tnh cht ng ca mng, m ta nh kch thc khi Switch qu ln s khng th
gi c ti trn n. Ngoi ra, s lng ngi dng v cc ng dng trn mng cng tng theo
thi gian, do vic thay i kch thc khi Switch l cn thit. Mt khc, ta cng da vo
lung lu lng thc t v kiu lu lng xut hin trong khi Switch c th c lng, m
hnh ha, hoc o lng cc tham s ny bng cc ng dng v cc cng c phn tch mng.
Thng thng, mt khi switch qu ln nu xy ra cc s kin sau:
Cc router (chuyn mch a lp) lp Distribution b nghn c chai. S tt nghn ny
do lng lu lng bn trong VLAN cn CPU x l nhiu hoc s ln chuyn mch
c yu cu bi chnh sch v chc nng bo mt (danh sch truy cp, hng i).

to bn sao v chuyn tip qua nhiu port. iu ny i hi cc x l ban u trong
Lu lng broadcast v multicast lm chm chuyn mch trong khi Switch do vic
chuyn mch a lp, v n s tr nn qu ti nu xut hin mt lng lu lng ng

k.

Cc switch lp Acces c th c nhiu hn mt kt ni d phng n cc thit b ca lp

Distribution cung cp mt mi trng vt qua li nu lin kt u tin b hng. Tht vy, v
lp Dictribution s dng cc thit b lp 3, nn lu lng c th c cn bng ti trn c kt ni
d phng.
Thng thng ta c th cung cp hai switch trong khi Distribution d phng, vi mi
switch lp Acces kt ni n hai switch ny. Sau , mi switch lp 3 c th cn bng ti trn kt
ni d phng n lp Core bng vic s dung giao thc nh tuyn.
Hnh 1.8 biu din khi Switch, lp 3 c hai switch d phng dng cho vic cn bng ti.
1.5.2 Khi Core

Mt khi core c yu cu kt ni 2 hoc nhiu hn cc khi switch trong mng Campus.
Bi v lu lng t tt c cc khi Switch, cc khi Server Farm, v khi Enterprise bin phi i
qua khi Core, nn khi Core phi c kh nng v tnh n hi chp nhn c. Core l khi
nim c bn trong mng Campus, v n mang nhiu lu lng hn cc khi khc.
Khi Core c th s dng bt c cng ngh no (Framrelay, cell, hoc packet) truyn d
liu trong mng Campus. Nhiu mng Campus s dng Gigabit hoc 10 Gigabit Ethernet trong
khi core. Ta cn phi xem li chiu di khi Ethernet Core.
Nh chng ta bit, c hai lp Distribution v Core u cung cp cc chc nng lp 3. Cc
mng con IP u kt ni n tt c cc switch ca Distribution v Core. Ta phi s dng t nht
hai mng con cung cp tnh co dn v cn bng ti trong Core.Mc d ta c th s dng
VLAN nhng VLAN lp Distribution, n c nh tuyn bn trong Core.
Khi Core gm c mt switch a lp, nhn hai lin kt d phng t switch ca lp
nhiu switch ging nhau trong Core d phng.

Distribution. Do tnh quan trng ca khi Core trong mng Campus nn ta phi thc thi hai hoc
Cc lin kt gia cc lp cng c thit k mang t nht mt lng ti t lp Distribution.

Cc lin kt gia cc switch ca khi Core trong cng mt mng con phi c kch c mang
phi cho php s pht trin trong tng lai. Mt Ethernet Core cho php nng cp n gin v c
lu lng tng hp vo switch ca Core. Ta coi nh l tn dng lin kt trung bnh nhng n
tnh leo thang, v d nh s pht trin t Etherne -> Fast Ethernet -> Fast EtherChannel ->Gigabit
Ethernet -> Gigabit EtheeChannel

Hai khi Core c bn c thit k l:

Collapsed Core.
Dual Core.
Collapsed core
Khi Collapsed Core l s phn lp ca lp Core, c che lp trong lp Distribution. y,
cc chc nng ca c Distribution v Core u c cung cp trong cng cc thit b switch.
iu ny thng thy trong mng Campus nh hn m khng xc nhn s tch ri ca lp Core.
Hnh 1.9 biu din khi Collapsed Core, mc d chc nng ca lp Distribution v Core c
thc hin trong cng mt thit b, nhng iu quan trng l n vn gi cc chc nng ny mt
cch ring bit v c thit k ng cch. Ch l khi Collapsed Core ph thuc khi
building, nhng n c kt hp vo trong lp Distribution ca khi Switch c lp.
Trong khi Collapsed Core, mi switch lp Access c mt lin kt d phng n mi switch
ca lp Distributon v Core. Tt c cc mng con lp 3 c trong lp Access u c gii hn ti
Distribution v Core kt ni vi nhau bng mt hoc nhiu lin kt d phng.

cc port lp 3 ca switch trong lp Distribution, ging nh khi Switch. Cc switch ca lp
lp 3 nh tuyn lu lng ngay lp tc n ti cc switch khc. Trong hnh 1.9 ch v tr ca

Kt ni gia cc switch ca lp Distribution v Core s dng cc kt ni lp 3. Cc switch
VLAN A v B l thuc cc switch ca lp Access. Cc VLAN b gii hn v lp

Distribution s dng switch lp 3 nn s lm gim min broadcast, loi b c kh nng lp ca
cu ni lp 2 v cung cp s vt li nhanh nu mt kt ni b li.
Dual Core
Mt Dual Core kt ni hai hay nhiu khi Switch d phng, nhng khi Core khng th c
tnh m rng khi c nhiu khi Switch c thm vo. Hnh 1.10 minh ha khi Dual Core. Ch
rng khi Core ny xut hin nh l mt module c lp v khng c ghp vo trong bt k
khi hoc lp no.

Trc y, khi Dual Core thng c dng xy dng vi switch lp 2 cung cp thng
lng n gin nht v hiu qu nht. Cn chuyn mch lp 3 c cung cp trong lp
Distribution. Hin nay, chuyn mch a lp mang li li nhun v cung cp hot ng chuyn
mch cao. Vic xy dng Dual Core vi chuyn mch a lp c ngh v c th thc hin
c. Dual core s dng hai switch ging nhau d phng. Cc lin kt d phng kt ni lp
Distribution ca khi Switch n mi switch ca Dual Core. Hai switch ca khi Core kt ni bi
mt lin kt. Trong Core lp 2, cc switch khng c kt ni trnh s lp vng trong cu ni.
Mt Core lp 3 s dng cho nh tuyn hn l cu ni, v s lp vng cu ni khng xy ra.
Trong Dual Core, mi switch ca Distribution c hai con ng vi chi ph bng nhau, cho
php s dng ng thi cng mt lc bng thng sn c ca c hai con ng. Nu mt switch b
li, th giao thc nh tuyn s nh tuyn li lu lng s dng con ng khc qua switch d
phng cn li.
Kch thc ca khi Core trong mng Campus
Dual Core l khi cc switch d phng c lp ghp vi nhau, c gii hn v bit lp bi
cc thit b lp 3. Cc giao thc nh tuyn xc nh cc con ng v duy tr hot ng ca khi
Core. i vi bt k mng no, ta cng phi ch n vic thit k router v cc giao thc nh
tuyn trong mng. Bi v cc giao thc nh tuyn truyn b cp nht thng lng mng, nn
hnh trng mng phi chiu s thay i. Kch thc mng (s lng router) s nh hng n hot
ng ca giao thc nh tuyn v s cp nht c thay i.
Hnh 1.10 biu din mng nh vi hai khi Switch cha hai switch chuyn mch lp 3 (x l
nh tuyn bn trong switch ca lp Distribution), cn i vi mng Campus ln, c th c nhiu
khi Switch kt ni n khi Core. Nu ta xem mi switch a lp l mt router, th ta nh li
rng, mi b x l nh tuyn s gi cc thng tin truyn thng vi cc ngang cp kt ni trc

tip vi n. Thc t, hu ht cc giao thc nh tuyn u gii hn s router ngang cp, m kt
khi Switch ln, th s kt ni router kh ln. Ta khng nn cp qu nhiu switch ca

ni trc tip trn lin kt point-to-point hoc kt ni multicast. Trong mt mng vi s lng
Distribution, bi v s lng thc t ca cc ngang cp kt ni trc tip th kh nh, khng quan

tm n kch thc mng Campus. Cc VLAN ca lp Access s gii hn cc switch ca lp
Distribution. Ch cc router ngang cp bin l mt cp switch Distribution,cung cp d phng
cho mi mng con VLAN ca lp Access. bin ca lp Distribution v Core, mi switch ca
Distribution ch kt ni n hai switch ca khi Core trn giao tip ca switch lp 3. V vy, ch
thit lp mt cp router ngang cp.
Khi cc switch a lp c s dng trong lp Distribution v Core, th cc giao thc nh
tuyn s chy trn mi cp lin kt d phng gia cc con ng vi chi ph bng nhau ca c
hai lp. Lu lng c nh tuyn qua c hai lin kt chia s ti v tn dng bng thng ca
c hai lin kt ny.
Mt im cui cng cu vic thit k lp Core l tnh co dn ca cc switch trong khi Core
phi tha ti lu lng i vo. mt mc nh nht, mi switch ca khi core phi iu khin
c lin kt i vo lp Distribution vi cng sut 100%.
1.5.3 Cc khi building khc

Cc ti nguyn khc trong mng Campus c nh danh v t vo m hnh khi building.
V d nh, mt Server Farm gm nhiu my ch chy cc chng trnh ng dng c truy cp
t cc ngi dng t tt c Enterprise. iu cn thit l cc my ch ny phi c tnh theo thang
m rng trong tng lai, c kh nng truy cp cao, v cng em li li ch t vic iu khin
lu lng v cc chnh sch bo mt.
c c nhng iu cn thit trn, ta c th nhm cc ti nguyn vo cc khi building
ging nh l m hnh khi switch. Cc khi ny cng c switch ca lp Distribution v c cc
kt ni d phng ni trc tip vo lp Core, n cng cha cc ti nguyn ca Enterprise.
Hu ht cc khi building u c trong mng Campus va v ln, ta quen vi khi nim
t chc nng Enterprise vo trong khi Switch ca n, cng nh xy dng khi ny.
Khi Server Farm
Bt k mt my ch hay ng dng no c truy cp bi hu ht ngi dng ca Enterprise
thng thuc v mt Server Farm. Ton b Server Farm ny c nhn dng nh l khi Switch
cao.
ca chnh n, v kt ni cc switch ca Distribution vo trong lp Core vi lin kt d phng tc
Cc my ch ring c cc kt ni mng n n mt trong cc switch ca Distribution. Nu

mt my ch d phng c s dng, th n nn kt ni n switch lun phin ca Distribution.
iu ny c bit nh l Dual-homing ca cc my ch.
V d: cc my ch ca Enterprise gm c email, cc dch v intranet, cc ng dng ERP
(Enterprise Resource Planning), v h thng my tnh ln. Ch l mi ti nguyn ni b u
c t bn trong mt firewall hay vng bo mt.
Khi qun l
Thng thng, cc mng Campus phi c kim tra qua vic s dng cc cng c qun tr
mng o lng hot ng mng v pht hin li. Ta c th nhm ton b ng dng qun l
mng vo trong mt khi Switch qun l mng. iu ny tri ngc vi khi Server Farm, bi v

cc cng c qun tr mng khng phi l ti nguyn ca Enterprise c truy cp bi hu ht cc

my ch. Hn na, cc cng c ny s i ra ngoi truy cp vo cc thit b mng khc, cc ng
dng ca my ch v hot ng ca ngi dng trong tt c cc khu vc ca mng Campus.
V cc cng c ny c dng pht hin li xy ra ti thit b v cc kt ni, nn li ch ca n

Khi Switch qun l mng thng c lp Distribution kt ni vo cc switch ca khi Core.
rt quan trng. Cc kt ni d phng v switch d phng u c s dng.

V d: ti nguyn qun l mng trong khi switch bao gm:
Cc ng dng kim tra mng.
Cc server ng nhp h thng (syslog).
Cc server xc thc, cp quyn v cung cp ti khon (AAA).
Cc ng dng qun l chnh sch.
Qun tr h thng v cc dch v iu khin t xa.
Cc ng dng qun l, pht hin xm nhp.
Khi Enterprise bin
Hu ht cc mng Campus phi kt ni n cc nh cung cp dch v truy cp n ti
nguyn bn ngoi, c gi l cc bin ca Enterprise hoc ca Campus. Cc ti nguyn ny c
sn trong ton b mng Campus v c truy cp ch yu nh l khi Switch kt ni n khi
Core ca mng.
Cc dch v bin thng c chia thnh:

dch v cng cng, nh email, v extranet web server. Cc kt ni ny c cung cp
Truy cp internet: h tr lu lng ra ngoi internet, cng nh lu lng vo cc
thng c t ti y.
bi mt hoc nhiu nh cung cp dch v Internet (ISP). Cc thit b bo mt mng

mng PSTN (Public Switched Telephone Network). Nu lu lng thoi c h tr
Truy cp t xa v VPN: h tr cc truy cp quay s t cc ngi dng bn ngoi qua
trn mng Campus, th gateway VoIP phi kt ni n PSTN y. Thm na, cc

thit b VPN kt ni vo Internet h tr kt ni ng hm bo mt n cc v tr t
xa.
Thng mi in t: h tr web, ng dng v c s d liu cng nh firewall v cc
thit b bo mt. Khi switch kt ni n mt hoc nhiu ISP.
Truy cp WAN: h tr tt c cc kt ni WAN truyn thng n cc v tr t xa nh
FrameRelay, ATM, Leased-Line, ISDN
Khi nh cung cp dch v bin
Mi nh cung cp dch v kt ni n mt mng Campus cng phi c thit k mng phn
cp ca chnh n. Mt mng ca nh cung cp dch v p ng cho mt Enterprise bin nh
cung cp, kt ni n bin ca khi Enterprise.
y ta khng quan tm n mng ca nh cung cp dch v, m ch cn bit l mng
Campus c mt khi bin kt ni n bin ca mng nh cung cp.

1.6 Cc sn phm ca Cisco trong mng Campus
Kch
Catalyst
thc Lp Tnh nng
Switch
mng
Dng Access 2950 < 50 user

chung
10/100BASE-T
cho c ba
mng 100BaseFX or 1000BASE-X uplinks
nh, va
v ln 3550 < 50 users
10/100BASE-T
1000BASE-X uplinks
4000/ < 250 users

4500
10/100/1000BASE-T
1000BASE-X uplinks
6500 250 users

10/100/1000Base-T
1000Base-X uplinks
Nh Distribution 3550-12T 10 10/100/1000BASE-T

(EMI)
/Core 2 1000BASE-X uplinks;
MLS
3550- 10 1000BASE-X
12G
2 10/100/1000BASE-T uplinks;
(EMI)
MLS
4006/ 30 1000BASE-X
4500
hoc 240 10/100/
1000BASE-T
MLS
6500 100 1000BASE-X

kh nng hot ng cao.
MLS

Tnh m rng trong tng lai

Kch
Catalyst
thc Lp Tnh nng
Switch
mng
Va Distribution 4006/ 30 1000BASE-X

4500
hoc 240 10/100/ 1000BASE-T
MLS
6500 100 1000BASE-X

kh nng hot ng cao.
MLS
Core 6500 100 1000BASE-X

kh nng hot ng cao.
MLS
Ln Distribution 6500 100 1000BASE-X

kh nng hot ng cao.
MLS
Core 6500 100 1000BASE-X

kh nng hot ng cao.
MLS

Chng 2: VLAN, TRUNK, V VTP

(VLAN TRUNKING PROTOCOL)
2.1 Mng LAN o (Virtual LAN - VLAN)
M hnh mng khng c VLAN l mt flat network v n ch hot ng chuyn mch lp 2.
Mt flat network l mt min broadcast, mi gi broadcast t mt host no u n c tt c
switch chia nh min collision, tuy nhin n vn khng ngn c min broadcast. Ngoi ra
cc host cn li trong mng. Mi port trong switch l mt min collision, v vy ngi ta s dng
n cn c cc vn nh:
Vn v bng thng: trong mt s trng hp mt mng Campus lp 2 c th m
rng thm mt s building na, hay s user tng ln th nhu cu s dng bng thng cng
tng, do bng thng cng nh kh nng thc thi ca mng s gim.
Vn v bo mt: bi v user no cng c th thy cc user khc trong cng mt flat
network, do rt kh bo mt.
Vn v cn bng ti: trong flat network ta khng th thc hin truyn trn nhiu
ng i, v lc mng rt d b loop, to nn broadcast storm nh hng n bng
thng ca ng truyn. Do khng th chia ti (cn gi l cn bng ti).
gii quyt cc vn trn, ngi ta a ra gii php VLAN. VLAN (Virtual Local Area
Network) c nh ngha l mt nhm logic cc thit b mng, v c thit lp da trn cc
yu t nh chc nng, b phn, ng dng ca cng ty. Mi VLAN l mt mng con logic c
to ra trn switch, cn gi l segment hay min broadcast.
end-to-end ca VLAN 1, nn bt c trm no trn VLAN 1 u c th truyn thng nu nh n

Hnh 2.1 biu din mt VLAN cung cp kt ni logic gia cc port ca switch. V c kt ni
c kt ni n on mng vt l.
Trang 21
2.1.1 Cc kiu thnh vin ca VLAN (VLAN Membership)

Khi VLAN c cung cp switch lp Access, th cc u cui ngi dng phi c mt vi
phng php ly cc thnh vin n n. C 2 kiu tn ti trn Cisco Catalyst Switch l:
Static VLAN.
Dynamic VLAN.
Static VLAN
Static VLAN cung cp kiu thnh vin da vo port, ngha l cc port ca switch c gn
cho cc VLAN ring bit. Cc thit b ngi dng u cui tr thnh thnh vin trong VLAN da
vo port vt l ca switch kt ni n n. Khng c thit lp quan h i vi thit b u cui, m
n t ng tha nhn kt ni VLAN khi n kt ni n mt port. Thng thng, thit b u cui
thm ch khng nhn thc c s tn ti ca VLAN.
Ngi qun tr mng s cu hnh cc port ca switch gn cho cc VLAN bng tay, nn c
gi l trng thi tnh. Mi port nhn mt port VLAN ID vi mt s VLAN. Cc port trn mt
switch c th c gn v nhm thnh nhiu VLAN. Mc d hai thit b cng kt ni n mt
switch, nhng nu VLAN ID ca n khc nhau th lu lng gia chng s khng qua nhau.
thc hin chc nng ny, ta phi s dng thit b lp 3 nh tuyn cc gi hoc thit b m
rng lp 2 lm cu ni cc gi gia hai VLAN.
Kiu thnh vin Static VLAN thng c qun l trong phn cng vi mch tch hp ng dng
c bit ASIC (Application Specific Intergrated Circuit) trong switch. Kiu ny cung cp kh
nng hot ng tt v tt c vic nh x cc port c lm mc phn cng v vy khng cn c
bng truy tm phc tp.
Dynamic VLAN
Dynamic VLAN cung cp thnh vin da trn a ch MAC ca thit b ngi dng u cui.
Khi mt thit b kt ni n mt port ca switch, switch phi truy vn n c s d liu thit
lp thnh vin VLAN. Ngi qun tr mng phi gn a ch MAC ca user vo mt VLAN trong
c s d liu ca VMPS (VLAN Membership Policy Server). Hnh 2.2 biu din Dynamic
VLAN vi bng a ch MAC

Vi Cisco Switch, dynamic LAN c to v qun l bng cng c qun l mng nh Cisco
Work 2000. Dynamic VLAN cho php tnh mm do v tnh di ng cho ngi dng u cui.
2.1.2 Trin khai VLAN

thc thi VLAN, ta phi xem xt s thnh vin ca VLAN, thng thng s VLAN s ph
thuc vo kiu lu lng, kiu ng dng, phn on cc nhm lm vin ph bin v cc yu cu
qun tr mng.
Mt nhn t quan trong cn xem xt l mi quan h gia cc VLAN v k hoch s dng a
ch IP. Cisco gii thiu mt s tng thch 1-1 gia VLAN v cc mng con, ngha l nu mt
mng con vi mt mask 24 bit c s dng cho mt VLAN, nh vy c nhiu nht 254 thit b
trong VLAN v cc VLAN khng m rng min lp 2 n Distribution Switch. Trong trng
hp khc, VLAN khng i n Core ca mng, v khi Switch khc. tng ny gi cho min
broadcast v lu lng khng cn thit ra khi khi Core.
Cc VLAN c chia trong khi Switch bng hai cch c bn sau:
End-to-end VLA
Nocal VLAN
End-to-end VLAN
End-to-end VLAN cn c gi l Campus-wide VLAN, ni ton b switch ca mt mng.
N c xc nh h tr tnh mm do v tnh di ng cc i cho thit b u cui. Cc user
c gn vo VLAN m khng quan tm n v tr vt l. V mt user di chuyn quanh Campus,
th n cng thuc VLAN , ngha l mi VLAN phi c hiu lc (available) lp Access trong
mi khi Switch.
End-to-end VLAN nn nhm cc user theo nhu cu ph bin. Tt c user trong mt VLAN c
nhm cc b, trong khi 20% n mt ti nguyn t xa trong mng Campus. Mc d 20% ca lu

cng kiu lung lu lng theo lut 80/20. Lut ny c ngha l 80% lu lng l ca user trong
lng trong VLAN qua Core ca mng, nhng end-to-end VLAN lm n c th thc hin tt c
lu lng bn trong VLAN qua Core.
V tt c VLAN phi c hiu lc mi switch lp Access, nn VLAN trunking phi c s
dng mng tt c cc VLAN gia switch lp Access v lp Distribution.
Ch : end-to-end VLAN khng c ngh trong mng Enterprise, nu khng c mt l
do hp l. Lu lng broadcast c mng trn mt VLAN t mt u cui ca mng n mt
u cui khc, nn bo broadcast (broadcast storm) hoc lp vng cu ni lp 2 cng c th
truyn b qua phm vi ca ti nguyn. Khi , vic x l s c tr nn qu kh, v s mo him
s dng end-to-end VLAN lm nh hng n li ch.
Local VLAN
kh duy tr. Lut 20/80 c ngha l 20% lu lng cc b, cn 80% n mt ti nguyn t xa qua
V hu ht mng Enterprise hng ti lut 20/80, nn end-to-end VLAN tr nn cng knh v
lp Core. Cc ngi dng u cui i hi truy cp vo ti nguyn trung tm bn ngoi VLAN

ca n. Cc uer phi qua Core ca mng thng xuyn hn. Cc VLAN c gn cha cc nhm
user da trn ng bin vt l, lin quan n lng lu lng ri VLAN.
Kch thc VLAN vt l l t mt switch trong phng dy cp, n ton b mt building,
iu ny cho php chc nng lp 3 trong mng Campus iu khin ti lu lng trong VLAN

mt cch thng minh.Do cung cp tnh li ch cc i bng cch s dng nhiu con ng n
ch, tnh m rng cc i bng cch gi VLAN bn trong mt khi Switch v tnh qun l cc
i.
2.2 VLAN Trunk

lp Access, cc thit b u cui kt ni n cc port ca switch to thnh kt ni n
VLAN. Cc thit b gn vo ny khng nhn thc c cu trc VLAN, v n gin l gn vo
mt on mng vt l bnh thng. Vic gi thng tin t lin kt truy cp trn mt VLAN n
VLAN khc khng c thc hin nu khng c s can thip ca thit b lp 3 (c th l router
lp 3 hoc bridge lp 2 bn ngoi).
nh mt Ethernet Hub c kt ni vo port ca switch. Mt thit b ngi dng trn Hub phi
Ch l mt port ca switch h tr nhiu hn mt mng con cho thit b gn vo n. V d
c cu hnh l 192.168.1.1/24, trong khi thit b khc c gn l 192.168.17.1/24. Mc d cc

mng con ny k lin nhau, v truyn thng trn mt switch duy nht, nhng n khng tch ri
VLAN. Port ca switch h tr mt VLAN, nhng nhiu mng con c th tn ti trn mt VLAN.
ng trunk mt kt ni vt l v logic gia hai switch truyn d liu. y l mt knh
truyn gia hai im v hai im ny thng l cc switch, l trung tm ca cu trc mng hnh
switch. Cc lin kt trunk tt nht khi switch kt ni n cc switch khc hoc n router. Mt
sao. Mt lin kt trunk (ng chnh) c th h tr nhiu hn mt VLAN qua mt port ca
lin kt trunk khng c gn cho mt VLAN ring bit. Thay v mt, nhiu hoc tt c cc
VLAN c truyn gia cc swtich s dng mt lin kt trunk vt l.
Ta c th kt ni hai switch vi lin kt vt l ring bit i vi mi VLAN nh hnh 2.3
V VLAN c thm vo mt mng, nn s lin kt c th tng nhanh chng. s dng

giao tip vt l v cp hiu qu hn ngi ta dng trunk. Hnh 2.4 biu din lm th no mt
trunk c th thay th nhiu lin kt VLAN ring bit.

hp cc lin kt knh Fast v Gigabit Ethernet. phn bit lu lng gia cc VLAN khc
Cisco h tr trunk trn lin kt switch ca Fast Ethernet v Gigabit Ethernet ging nh kt
nhau trn mt trunk. switch phi c cch nhn dng mi frame vi VLAN thch hp. Phn sau s
tho lun v cc phng php nhn dng ny.
2.2.1 Nhn dng cc frame VLAN
qua cc ng trunk, do cc gi c truyn trn ng trunk phi c thng tin nhn dng v
Trong mt mng Campus c rt nhiu VLAN trn nhiu switch, cc switch ny ni vi nhau
VLAN m n thuc v. Nh vy ngi ta s dng VLAN ID gn vo cc frame, ri mi

truyn i trn trunk.
Mi switch s kim tra VLAN ID xc nh frame ny thuc v VLAN no, v chuyn qua
nhng port thuc VLAN . Sau y ta xem xt hot ng chuyn frame t my B sang my Y
trong VLAN 3 trong hnh 2.5.
u tin B gi frame n switch 1, switch 1 s nhn frame v kim tra trong bng a
ch MAC ca n, th n bit c y l frame ca VLAN 3 v ch n k tip l qua
switch 2. Switch 1 s thm VLAN ID ca VLAN 3 v gi qua ng trunk kt ni
n switch 2.
Switch 2 nhn frame, n kim tra VLAN ID v bit c frame ny n VLAN 3,
ng thi ch n k tip l phi qua switch 3. Switch 2 s chuyn frame qua ng
trunk ni n switch 3.


frame n cho Y. Y nhn frame bit c n c gi t B (da vo a ch MAC),
Khi switch 3 nhn frame, n kim tra frame, v tch VLAN ID ra khi frame v gi
nhng n khng bit n thuc v VLAN no, ch c switch 3 mi bit thng tin .
C 2 cch nhn dng VLAN ID l:
Cisco Inter - Switch Link.
IEEE 802.1Q.
Cisco Inter - Switch Link
ISL l giao thc ng gi frame c trng ca Cisco cho kt ni nhiu switch. N c dng
mun i qua ng trunk n switch hay router khc th ISL s thm 26 byte header v 4 byte
chnh trong mi trng Ethernet, ch h tr trn cc router v switch ca Cisco. Khi mt frame
trailer vo frame. Trong VLAN ID chim 10 bit, cn phn trailer l CRC m bo tnh
chnh xc ca d liu.
Thng tin th c thm vo u v cui mi frame, nn ISL cn c gi l nh th kp.
ISL c th chy trong mi trng point-to-point, v c th h tr ti a 1024 VLAN (do VLAN
ID chim 10 bit).
Hnh 2.6 biu din frame Ethernet c ng gi v chuyn tip ra lin kt trunk. V thng
tin th c thm vo u v cui frame nn i khi ISL c cp nh l th i. Nu mt
frame c nh trc cho mt lin kt truy cp, th vic ng gi ISL (c phn header ln
trailer) khng c ghi li vo trong frame trc khi truyn. N ch gi thng tin ISL cho lin kt
trunk v thit b c th hiu giao thc.
Ch : nhn dng VLAN bng ISL hoc ng gi trunk khng cn h tr tt c Cisco

Catalyst Switch. V vy ta nn bit r n v so snh vi phng php IEEE 802.1Q
IEEE 802.1Q:
IEEE 802.1Q l mt chun cng nghip dng nhn dng VLAN c truyn qua ng
trunk, n hot ng trn mi trng Ethernet v l mt chun m.
L giao thc dng dn nhn frame khi truyn frame trn ng trunk gia hai switch hay
gia switch v router, vic dn nhn frame c thc hin bng cch thm thng tin VLAN ID
vo phn gia phn header trc khi frame c truyn ln ng trunk nh hnh 2.7, y cn
c gi l phng php dn nhn n hay dn nhn ni. IEEE 802.1Q c th h tr ti a l
4095 VLAN.

Trong :
Th 802.1Q c 4 byte gm c cc phn nh sau:
o 802.1Q TPID (Tag Protocol IDentifier): c di 16 bit, c gi tr c nh l
0x8100. Dng nhn dng frame ng gi theo chun IEEE 802.1Q.
o Priority: u tin, c 8 mc u tin (0 -> 7), mc nh l 0.
o CFI (Canonical Format Indicator): Lun t gi tr 0 cho Ethernet Switch
c chuyn i nh port khng gn thm tag.

tng thch vi mng Token Ring. Nu CFI c gi tr l 1 th frame s khng
Destination address (DA) - 6 byte: a ch MAC ch.

Source addresses (SA)- 6 byte: a ch MAC ngun.
Length/Type- 2 bytes: ch nh di ca frame hay kiu giao thc s dng lp
trn.
Data: l mt dy gm n byte (42 <= n <= 1496) .Chiu di frame tng cng ti thiu
l 64 bytes ( khi n = 42 byte).
Frame check sequence (FCS)- 4 byte: cha m sa sai CRC 32-bit.
Ch : cc frame c kch thc qu kh c quy nh trong cc chun khc nhau, chuyn
tip ng cch, cc Catalyst switch s dng phn cng ring vi phng php ng gi ISL.
Trong trng hp ng gi 802.1Q, cc switch tun theo chun IEEE 802.3ac, chun ny m
rng chiu di frame n 1522 byte.
2.2.2 Giao thc trunk ng (Dynamic Trunking Protocol - DTP)
802.1Q. Thm vo , Cisco thc hin quyn s hu, v giao thc point-to-point c gi l
Ta c th cu hnh bng tay cc lin kt trunk trn Catalyst Switch theo kiu ISL hoc IEEE
giao thc trunk ng DTP (Dynamic Trunking Protocol) dn xp kiu trunk ph bin gia hai
switch. S dn xp kim ny sot vic ng gi (ISL hoc 802.1Q) cng nh kt ni tr thnh
trunk cho tt c. iu ny cho php s dng kt ni m khng cn c qu nhiu s cu hnh bng
tay hay qun tr. Vic s dng DTP s c gii thch phn sau.
Ch : DTP bi v hiu nu mt switch c kt ni trunk n mt router v router khng thc
thi giao thc DTP. Mt lin kt trunk ch c dn xp gia hai switch nu c hai switch thuc
cng mt min qun l ca giao thc VTP (VLAN Trunk Protocol), hoc nu mt hoc c hai

khng nh ngha min VTP. VTP s c tho lun phn 2.3. Nu hai switch c min VTP v
trunk gia cng khc nhau, th ta phi thit lp kt ni trunk l kiu "on" hoc kiu "nonegotiate",
vic ny s nh hng n trunk c thit lp.
2.3 VLAN Trunking Protocol - VTP
hnh v qun l mt s lng ln switch, VLAN v VLAN trunk phi c iu khin ra ngoi
Trong mi trng mng Campus thng gm c nhiu switch kt ni bn trong, nn vic cu
nhanh. Cisco trin khai mt phng php qun l VLAN qua mng Campus l VLAN
Trunking Protocol - VTP.
S dng gi trunk lp 2 qun l s thm xa v t tn cho VLAN trong mt min qun tri
VTP l mt giao thc qung b cho php duy tr cu hnh thng nht trn mt min qun tr.
nht nh. Thng ip VTP c ng gi trong frame ca ISL hay 802.1Q v c truyn trn
cc ng trunk. ng thi, VTP cho php tp trung thng tin v s thay i t tt c cc switch
trong mt h thng mng. Bt k switch no tham gia vo s trao i VTP u c th nhn bit
v s dng bt c VLAN no m VTP qun l. Sau y ta s ni n hot ng ca giao thc
VTP.
2.3.1 Min VTP

VTP c sp sp trong min qun l, hoc khu vc vi cc nhu cu thng thng ca
VLAN. Mt switch c th ch thuc mt min VTP, v chia s thng tin VLAN vi cc switch
khc trong min. Tuy nhin cc switch trong cc min VTP khc nhau khng chia s thng tin
VTP.
Cc switch trong mt min VTP qung b mt vi thuc tnh n cc min ln cn nh min
qun l VTP, s VTP, VLAN, v cc tham s c trng ca VLAN. Khi mt VLAN c thm
vo mt switch trong mt min qun l, th cc switch khc c cho bit v VLAN mi ny qua
vic qung b VTP. Tt c switch trong mt min u c th sn sng nhn lu lng trn cng
trunk s dng VLAN mi.
2.3.2 Cc ch (mode) VTP

tham gia vo min qun l VTP, mi switch phi c cu hnh hot ng ch
no. Ch VTP s xc nh qu trnh chuyn mch v qung b thng tin VTP nh th no. Ta
c cc ch sau:
Ch Server: cc server VTP s iu khin vic to VLAN v thay i min ca n.
Tt c thng tin VTP u c qung b n cc switch trong min, v cc switch
khc s nhn ng thi. Mc nh l mt switch hot ng ch server. Ch l
min VTP phi c t nht mt server to, thay i hoc xa v truyn thng tin
VLAN.
Ch Client: ch VTP khng cho php ngi qun tr to, thay i hoc xa bt
c VLAN no thay v lng nghe cc qung b VTP t cc switch khc v thay i cu
hnh VLAN mt cch thch hp. y l ch lng nghe th ng. Cc thng tin
VTP c chuyn tip ra lin kt trunk n cc switch ln cn trong min, v vy
switch cng hot ng nh l mt r le VTP (relay).
Ch transparent (trong sut): cc switch VTP trong sut khng tham gia trong
VTP. ch trong sut, mt switch khng qung b cu hnh VLAN ca chnh n,

v mt switch khng ng b c s d liu VLAN ca n vi thng tin qung b nhn

c. Trong VTP phin bn 1, switch hot ng ch trong sut khng chuyn
tip thng tin qung b VTP nhn c n cc switch khc, tr khi tn min v s
phin bn VTP ca n khp vi cc switch khc. Cn trong phin bn 2, switch trong
sut chuyn tip thng tin qung b VTP nhn c ra cng trunk ca n, v hot
ng nh r le VTP.
Ch : switch hot ng ch trong sut c th to v xa VLAN cc b ca n. Tuy
nhin cc thay i ca VLAN khng c truyn n bt c switch no.
2.3.3 Qung b VTP

Mi Cisco switch tham gia vo VTP phi qung b s VLAN (ch cc VLAN t 1 n 1005),
v cc tham s VLAN trn cng trunk ca n bo cho cc switch khc trong min qun l.
Qung b VTP c gi theo kiu muilticast. Switch chn cc frame gi n a ch VTP
multicast v x l n. Cc frame VTP c chuyn tip ra ngoi lin kt trunk nh l mt trng
hp c bit.
Bi v tt c switch trong min qun l hc s thay i cu hnh VLAN mi, nn mt VLAN
phi c to v cu hnh ch trn mt VTP server trong min.
Mc nh, min qun l s dng qung b khng bo mt (khng c mt khu). Ta c th
thm mt khu thit lp min ch bo mt. Mi switch trong min phi c cu hnh vi
cng mt khu tt c switch s dng phng php m ha ng thng tin thay i ca VTP.
Qu trnh qung b VTP bt u cu hnh vi s ln sa li l 0. Khi c s thay i tip theo,
ln hn s lu tr cc b th qung b s c ghi ln thng tin VLAN, v vy thm s 0 ny

s ny tng ln trc khi gi qung b ra ngoi. Khi swich nhn mt qung b vi s ln sa li
vo rt quan trng. S ln sa li VTP c lu tr trong NVRAM v switch khng c thay

i. S ln sa li ny ch c khi to l 0 bng mt trong cch sau:
Thay i ch VTP ca switch thnh transparent, v sau thay i ch thnh
server.
Thay i min VTP ca switch thnh tn khng c thc (min VTP khng tn ti) v
sau thay i min VTP thnh tn c.
Tt hay m ch pruning (ct xn) trn VTP server.
Nu s ln sa li VTP khng c thit lp li 0, th mt server switch mi, phi qung b
VLAN khng tn ti, hoc xa. Nu s ln sa ln hn ln qung b lin trc, th switch
lng nghe ri ghi ln ton b s s d liu ca VLAN vi thng tin trng thi VLAN l null
hoc b xa. iu ny cp n vn ng b VTP.
Vic qung b c th bt u khi yu cu t switch (client-mode) mun hc v c s d liu
VTP thi im khi ng, v t switch (server-mode) khi c s thay i cu hnh VLAN. Vic
qung b VTP c th xy ra trong ba hnh thc sau:

bo tng kt 300s mt ln v mi khi c s thay i s s d liu ca VLAN. Thng
Thng bo tng kt (Summary Advertisement): cc server thuc min VTP gi thng
li cu hnh, nh du thi gian (timestamp), m ha hm bm MD5, v s tp con

tin ca thng bo tng kt gm c min qun l, phin bn VTP, tn min, s ln sa
ca qung b i theo. i vi s thay i cu hnh VLAN, c mt hoc nhiu tp con

qung b vi nhiu d liu cu hnh VLAN ring bit trong thng bo tng kt. Hnh
2.8 biu din format ca thng bo tng kt.

b tp con sau khi c s thay i cu hnh VLAN. Thng bo ny gm c cc thay i
Thng bo tp hp con (Subset Advertisement): cc server thuc min VTP qung
r rng c thc thi, nh to hoc xa mt VLAN, tm ngng hoc kch hot li

mt VLAN, thay i tn VLAN, v thay i MTU ca VLAN (Maximum
Transmission Unit). Thng bo tp con c th gm c cc thng s VLAN nh: trng
thi ca VALN, kiu VLAN (Ethernet hoc Token Ring), MTU, chiu di tn VLAN,
Identifer), v tn VLAN. Cc VLAN c ghi vo thng bo tp hp con mt cch

s VLAN, gi tr nhn dng kt hp vi bo mt SAID (Security Association
tun t v ring l. Hnh 2.9 biu din format ca thng bo tp con.


xa c s d liu ca VLAN, v thay i thnh vin min VTP, hoc nghe thng bo
Thng bo yu cu t client: mt client VTP yu cu thng VLAN nh xc lp li,
cc server p ng bng thng bo tng kt v thng bo tp con. Hnh 2.10 biu din
tng kt VTP vi s ln sa li cao hn s hin ti. Sau thng bo client yu cu, th
format yu cu ca thng bo client.
Cc Catalyst switch (server-mode) lu tr thng tin VTP khng dnh liu n cu hnh switch
trong NVRAM VLAN v d liu VTP c lu trong file vlan.dat trn h thng file b nh
Flash ca switch. Tt c thng tin VTP nh s ln cu hnh li VTP c lu li khi tt ngun
in ca switch. Switch c th khi phc cu hnh VLAN t c s d liu VTP sau khi n khi
ng.
2.3.4 S lt bt (pruning) VTP
min broadcast, cn cc frame multicast th c chuyn tip theo ngha thng minh hn, nhng
Ta hy nh li l mt switch chuyn tip cc frame broadcast ra tt c cc port sn c trong
cng cng mt kiu. Khi witch khng tm thy a ch MAC ch trong bng chuyn tip th n
phi chuyn frame ra tt c cc port c gng tm n ch.
Khi chuyn tip frame ta tt c cc port trong min broadcast hoc VLAN, th k c cc port
ca trunk nu c VLAN. Thng thng, trong mng c mt vi switch, cc lin kt trunk gia
cc switch v VTP c s dng qun l vic truyn thng tin VLAN. iu ny lm cho cc
lin kt trunk gia cc switch mang lu lng t tt c VLAN.
tip ra tt c cc port ca VLAN 3, bao gm c lin kt trunk n Cat A. Sau Cat A s chuyn
Xem xt mng trong hnh 2.11, khi hostPC trong VLAN 3 gi broadcast, th Cat C chuyn
tip broadcast n Cat B v D trn cc lin kt trunk ny. n lt Cat B v D ch chuyn

broadcast trn cc ln kt truy cp c cu hnh cho VLAN 3. Nu Cat B v D khng c user
no thuc VLAN 3, th vic chuyn tip frame broadcast n chng s dng ht bng thng trn
lin kt trunk, v b x l ti nguyn trong c hai switch, ch c Cat B v D loi b frame.

Do VTP pruning s s dng hiu qu bng thng bng cch gim bt vic lu lng
khng cn thit. Cc frame broadcast hoc cc frame unicast khng xc nh trn mt VLAN ch
c chuyn tip trn lin kt trunk nu switch nhn trn u cui ca trunk c port thuc VLAN
. VTP pruning l s m rng trn phin bn 1 ca VTP, s dng kiu message VTP b sung.
Khi mt Catalyst Switch c mt port vi mt VLAN, th switch gi qung b n cc switch ln
cn m c port hot ng trn VLAN . Cc ln cn ca n s gi thng tin ny gii quyt
nu c lu lng trn t mt VLAN c s dng port trunk hay khng.
Hnh 2.12 biu din mng t hnh 2.11 vi VTP pruning. V Cat B khng thng bo v
n Cat B. Cat D c thng bo v VLAN 3, nn lu lng c trn n n.

VLAN 3, nn Cat A s gim bt lu lng trn trunk bng cc khng trn lu lng VLAN 3

Ch : Ngoi ra ngi ta cn s dng giao thc Spanning Tree gim lu lng khng cn
thit trn trunk, ta s tm hiu phn ny chng 3.
2.3.5 G ri (trobleshooting) VTP

V mt l do no m mt switch khng nhn c thng tin cp nht t VTP server, th
hy xem xt cc nguyn nhn sau:
Switch c cu hnh theo kiu transparent nn khi nhn cc qung b VTP n th n
khng c x l.
Nu switch c cu hnh theo kiu Client, th n khng c chc nng nh VTP
server. Trong trng hp ny, th cu hnh thnh VTP sever ca chnh n.
Xem xt tn min c cu hnh ng cch so trng vi VTP server cha?
Xem xt phin bn VTP tng thch vi cc switch trong min VTP cha?
Ch : nu mt switch mi (c th ch client hay server) c cu hnh cng mt
min ca mng chuyn mch trc , v c s ln cu hnh li cao hn tt c cc switch hin c
trong mng, th ngay sau khi switch mi ny c a vo mng, n s ng b thng tin ca n
vi ton b switch trong mng. iu ny cc k nguy him v c th dn n ton b mng b
treo, v cc thng tin VLAN thay i hon ton. ngn chn iu ny xy ra th ta s thit
lp li s ln cu hnh ca mi switch mi trc khi a vo mng

Chng 3: SPANNING TREE PROTOCOL - STP

3.1 Tng quan v IEEE 802.1D
Mt mng mnh m c thit k khng ch em li tnh hiu qu cho vic truyn cc gi
hoc frame, m cn phi xem xt lm th no khi phc hot ng ca mng mt cch nhanh
chng khi mng xy ra li. Trong mi trng lp 3, cc giao thc nh tuyn s dng con ng
d phng n mng ch khi con ng chnh b li th s nhanh chng tn dng con ng
th 2. nh tuyn lp 3 cho php nhiu con ng n ch gi nguyn tnh trng hot ng
ca mng v cng cho php cn bng ti qua nhiu con ng.
Trong mi trng lp 2 (switching hoc bridging), khng s dng giao thc nh tuyn v
cng khng cho php cc con ng d phng, thay v bridge cung cp vic truyn d liu gia
cc mng hoc cc port ca switch. Giao thc Spanning Tree cung cp lin kt d phng
c nh ngha trong chun IEEE 802.1D.

mng chuyn mch lp 2 c th khi phc t li m khng cn c s can thip kp thi. STP
3.1.1 Spanning Tree l g v ti sao phi s dng n?
truyn thng vi nhau pht hin vng lp vt l trong mng. Sau giao thc ny s nh r
Spanning Tree Protocol (STP) l mt giao thc ngn chn s lp vng, cho php cc bridge
mt thut ton m bridge c th to ra mt topology lun l cha loop-free. Ni cch khc STP
s to mt cu trc cy ca free-loop gm cc l v cc nhnh ni ton b mng lp 2.
l kt qu ca vic c gng tnh ton cung cp kh nng d phng, trong trng hp ny, mt
Vng lp xy ra trong mng vi nhiu nguyn nhn. Hu ht cc nguyn nhn thng thng
link hoc switch b hng, cc link hoc switch khc vn tip tc hot ng, tuy nhin cc vng
lp cng c th xy ra do li. Hnh 3.1 biu din mt mng switch in hnh v cc vng lp c
c dng cung cp kh nng d phng nh th no.
Hai nguyn nhn chnh gy ra s lp vng tai hi trong mng chuyn mch l do broadcast v
s sai lch ca bng bridge.
Broadcast Loop
Broadcast Loop v vng lp lp 2 l mt s kt hp nguy him. Hnh 3.2 biu din broadcast
to ra vng lp phn hi (feedback loop).
Trang 33
Gi s rng, khng c switch no chy STP:

Bc 1: host A gi mt frame bng a ch broadcast MAC (FF-FF-FF-FF-FF-FF).
Bc 2: frame n c hai Cat-1 v Cat-2 qua port 1/1
Bc 3: Cat-1 s a frame qua port 1/2.
Bc 4: frame c truyn n tt c cc node trn on mng Ethernet k c port 1/2
ca Cat-2.
Bc 5: Cat-2 a frame ny n port 1/1 ca n.
Bc 6: mt ln na, frame xut hin port 1/1 ca Cat-1.
Bc 7: Cat-1 s gi frame ny n port 1/2 ln hai. Nh vy to thnh mt vng lp
y.
Ch : frame ny cng trn qua on mng Ethernet v to thnh mt vng lp theo hng
ngc li, feedback loop xy ra trong c hai hng. Mt kt lun quan trng na trong hnh 3.2 l
Trang 34
bridging loop nguy him hn nhiu so vi routing loop. Hnh 3.3 m t format ca mt DIXv2
Ethernet frame.
DIXv2 Ethernet Frame ch cha 2 a ch MAC, mt trng Type v mt CRC. Trong IP

header cha trng time-to-live (TTL) c thit lp ti host gc v n s c gim bt mi khi
qua mt router. Gi s b loi b nu TTL = 0, iu ny cho php cc router ngn chn cc
frame bt u b loop trong mng th n vn tip tc cho n khi ai ngt mt trong cc bridge
datagram b run-away. Khng ging nh IP, Ethernet khng c trng TTL, v vy sau khi mt
hoc ngt mt kin kt.

Trong mt mng phc tp hn mng c m t trong hnh 3.1, 3.2 th c th gy ra feedback
loop rt nhanh theo t l s m. V c mi frame trn qua nhiu port ca switch, th tng s frame
tng nhanh rt nhiu
Ngoi ra cn phi ch n broadcast storm trn cc user ca host A v B trong hnh 3.2.
Broadcast c x l bi CPU trong tt c cc thit b trn mng. Trong trng hp ny, cc PC
u c x l broadcast storm. Nu ta ngt kt ni mt trong s cc host t LAN, th n hot ng
tr li bnh thng. Tuy nhin, ngay khi ta kt ni n tr li LAN th broadcast s s dng 100%
CPU. Nu ta khng x l iu ny m vn tip tc s dng mng, th s to ra vng lp vt l
trong VLAN.
Vic sai lch bng bridge
Nhiu nh qun tr switch/bridge nhn thc vn c bn ca broadcast storm, tuy nhin
lp. Hnh 3.4 m t iu ny.

ta phi bit rng thm ch cc unicast frame cng c th truyn mi trong mng m cha vng
Bc 1: host A mun gi gi unicast n host B, tuy nhin host B ri khi mng,

v ng vi bng bridge ca switch khng c a ch ca host B.
Bc 2: gi s rng c hai switch u khng chy STP, th frame n port 1/1 trn c
hai switch.
Bc 3: v host B b down, nn Cat-1 khng c a ch MAC BB-BB-BB-BB-BB-BB
trong bng bridge, v n trn frame qua cc port.
Bc 4: Cat-2 nhn c frame trn port 1/2 . C 2 vn xy ra:
o Bc 5: Cat-2 trn frame v n khng hc a ch MAC BB-BB-BB-BB-BB-
BB, iu ny to ra feedback loop v lm down mng.
o Cat-2 ch rng, n ch nhn mt frame trn port 1/2 vi a ch MAC l AA-
AA-AA-AA-AA-AA. N thay i a ch MAC ca host A trong bng bridge
dn n sai port.
Trang 35
V frame b lp theo hng ngc li, nn ta thy a ch MAC ca host A b ln gia port 1/1
v 1/2. iu ny khng ch lm mng b trn vi cc gi unicast m cn sa sai bng bridge. Nh
vy khng ch c broadcast mi lm h hi mng.
3.1.2 Hai khi nim c bn ca STP
loop l: Bridge ID (B-ID) v chi ph ng i.

Vic tnh ton Spanning Tree da trn hai khi nim khi to ra topology lun l cha free-
Bridge ID (B-ID)
B-ID l mt trng c 8 byte, n gm c 2 trng con c miu t nh hnh 3.5 sau:
Trong :
a ch MAC: c 6 byte gn cho switch. Catalyst 5000 v 6000 s dng mt trong s
cc a ch MAC t vng 1024 a ch gn cho mi gim st (suprevisor) v
backplane. a ch MAC trong B-ID s dng format hexa.
Trang 36
Ch : mt vi Catalyst ly a ch MAC t module gim st (nh Catalyst 5000) v ly a

ch khc t backplane (nh Catalyst 5500 v 6000)
Bridge Priority: c 2 byte to thnh 216 gi tr t 0 - 65.535. Bridge Priority mc nh
l gi tr gia (32.768). Bridge Priority s dng format thp phn.
nh nhau nhng c mt vi im khc bit gia IEEE STP v DEC STP nh DEC STP s dng 8
Ch : ta ch tp trung vo phin bn IEEE ca Spanning Tree Protocol. Mc d v c bn l
bit Bridge Priority. Catalyst lp 2 nh: 4000, 5000, v 6000 ch h tr IEEE STP.
Chi ph ng i
Bridge s dng khi nim chi ph nh gi cc bridge khc. 802.1D nh ngha chi ph l
1000 Mbps bng cch chia bng thng ca link. V d nh mt link 10BaseT c chi ph l 100
(1000/10), Fast Ethernet v FDDI s dng chi ph l 10 (1000/100). Lc ny p ng tt t
khi Radia Perlman u tin lm vic trong giao thc nm 1983. Tuy nhin vi vic gia tng ca
Gigabit Ethernet v OC-48 ATM (2,4Gbps), th t ra mt vn l chi ph c lu tr l mt
gi tr nguyn m khng phi l phn s. V d nh kt qu OC-48 ATM trong 1000/2400 Mbps=
link bng hoc ln hn 1 Gbps, tuy nhin iu ny ngn cn STP la chn chnh xc con ng
41667 bps, mt gi tr chi ph khng hp l. Mt ty chn l s dng chi ph ca 1 cho tt c cc
tt nht trong mng Gigabit.

gii quyt tnh trng kh x ny, IEEE quyt nh sa i chi ph s dng tnh co dn
khng tuyn tnh. Bng 3.1 cho ta mt danh sch gi tr chi ph mi.
Bng thng Chi ph STP
4 Mbps 250
10 Mbps 100
16 Mbps 62
45 Mbps 39
100 Mbps 19
155 Mbps 14
622 Mbps 6
1 Gbps 4
10 Gbps 2
Bng 3.1 Danh sch chi ph mi

Gi tr trong bng 3.1 c chn cn thn s hot ng c v mi cho tc lin kt
nhanh nh hin nay. Mt im ch l gi tr chi ph STP cng thp cng tt .
3.1.3 Cc bc ra quyt nh ca STP
Trang 37
Khi to ra topology lun l cha loop-free th Spanning Tree lun dng trnh t 4 bc sau:
Root BID thp nht.
Chi ph ng i n Root Bridge thp nht.
BID ca ngi gi thp nht.
Port ID thp nht.
Bridge chuyn thng tin Spanning Tree vi nhau, s dng frame xc nh l n v d liu
giao thc bridge (Bridge Protocol Data Unit - BPDU). Mt bridge s dng trnh t 4 bc ny
lu mt bn sao ca BPDU tt nht trn mi port. Khi nh gi, n xem tt c BPDU nhn c
trn port cng nh BPDU gi i trn port . Mi BPDU n u c kim tra trnh t 4 bc
ny, nu tt hn BPDU hin ti th n c lu trn port v thay th gi tr c.
Ch : cc bridge s gi BPDU cu hnh cho n khi nhn nhiu hn mt BPDU tt.
Thm vo , qu trnh lu li BPDU tt nht cng iu khin vic gi cc BPDU. Khi mt
bridge hot ng ln u, th tt c cc port ca n c gi BPDU 2s mt ln (s dng gi tr b
nh thi mc nh). Tuy nhin, nu mt port lng nghe mt BPDU t mt bridge khc tt hn
BPDU m n gi, th port cc b s ngng gi BPDU. Nu BPDU ny t mt ln cn ngng n
trong mt chu k thi gian (20 s l mc nh) th port cc b tip tc gi BPDU li ln na.
Ch : C 2 loi BPDU l BPDU cu hnh v BPDU thng bo thay i topology (TCN).
3.1.4 S hi t STP ban u (Initial STP Convergence)

Phn ny ta s xem xt thut ton m STP s dng hi t ban u trn topology lun l
cha loop-free. Mc d c nhiu kha cnh STP, nhng s hi t ban u c phn nh thnh 3
bc sau:
Quyt nh mt Root Bridge.
Quyt nh Root Port .
Quyt nh Designated Port (port c ch nh).
Khi mt mng ln u khi ng, tt c cc bridge thng bo thng tin BPDU ln xn. Tuy
nhin, cc bridge ny s lp tc p dng trnh t 4 bc ( phn 3.1.3). Mt Root Bridge c
quyt nh hot ng nh l trung tm ca vn vt i vi mng. Tt c cc bridge cn li
tnh ton vic thit lp cc Root Port v cc Designated Port xy dng topology cha loop-
free. Kt qu l Root Bridge ging nh mt hub vi cc ng i loop-free pht ra bn ngoi.
Khi mng c trng thi n nh, th Root Bridge s gi cc BPDU n mi on mng.
Sau khi mng hi t trn topology loop-free, nu c thm s thay i th s s dng qu trnh
thay i topology.
mt vng lp. Mi cu ni c gn mt a ch MAC khng c tht tng ng vi tn thit b

Hnh 3.6 l m hnh ca mt mng switch/bridge. Mng ny gm c 3 bridge kt ni thnh
(v d nh Cat-A s dng a ch MAC l AA-AA-AA-AA-AA-AA).
Trang 38
Bc 1: quyt nh mt Root Bridge.

u tin cc switch cn chn mt Root Bridge bng cch tm bridge c BID thp nht. Qu
trnh la chn ny thng do tiu ca Root War.
Ch : nhiu ti liu s dng tnh u tin cao nht khi ni n kt qu ca Root War. Tuy
nhin, bridge vi tnh u tin cao nht thc t c gi tr thp nht. trnh nhm ln, ti liu ny
lun cp n gi tr thp nht.
Nh ni n phn trn B-ID l mt nh danh 8 byte c chia thnh 2 trng con l
Bridge Priority v a ch MAC t ngi gim st (supervisor) hoc backplane. Tr li hnh 3.6,
ta thy Cat-A c B-ID mc nh l 32.768 v a ch MAC l AA-AA-AA-AA-AA-AA. Cat-B l
u s dng Bridge Priority l 32.678 nn a ch MAC thp nht l AA-AA-AA-AA-AA-AA v

(32.768, BB-BB-BB-BB-BB-BB) v Cat-C l (32.768, CC-CC-CC-CC-CC-CC). V c ba bridge
Cat-A tr thnh Root Bridge. Hnh 3.7 m t qu trnh ny.

Ch : gi tr B-ID cng l thp nht.
Nhng lm th no cc bridge bit c Cat-A c B-ID thp nht? l do vic trao i cc

BPDU. Bridge s dng BPDU dnh ring thay i topology v thng tin Spanning Tree ln
nhau. Cc BPDU c gi mc nh 2s mt ln. Cc BPDU l lu lng bridge-to-bridge, n
khng mang lu lng end-to-end. Hnh 3.8 m t cc phn c bn ca mt BPDU.
Trang 39
Mc ch ca Root War ch lin quan n Root BID v trng Sender BID. Khi mt bridge
pht ra mt BPDU hai 2s mt ln, ngay tc khc n s xc nh Root Bridge da vo trng Root
BID. Bridge ny lun t B-ID ca chnh n trong Sender BID.
Ch : Root BID l ID ca Root Bridge hin ti, trong khi Sender BID l ID ca bridge cc
b hoc switch.
Khi bridge khi ng ln u tin, n lun lun t BID trong c hai trng Root BID v
Sender BID. Gi s rng, Cat-B khi ng u tin v bt u gi cc BPDU thng bo chnh n
l Root Bridge 2s mi ln. Mt vi pht sau Cat-C khi ng v thng bo chnh n l Root
Bridge. Khi BPDU ca Cat-C n Cat-B, Cat-B s loi b BPDU v n c B-ID thp hn c
lu trn cc port ca n. Ngay lp tc Cat-B truyn BPDU, Cat-C bit c l gi nh ban u
ca n l sai. Ti thi im , Cat-C bt u gi BPDU vi Root BID l B v Sender BID l C.
By gi mng chp nhn B l Root Bridge.
5 pht sau , Cat-A khi ng, n gi s rng n l Root Bridge v bt u qung b iu
ny trong BPDU. Ngay lp tc cc BPDU n Cat-B v C, cc switch ny s t b Root Bridge
li cho Cat-A. By gi tt c 3 switch u gi cc BPDU thng bo Cat-A l Root Bridge v
chnh n l Sender BID.
Bc 2: chn Root Port
Sau tranh ginh ca Root War, cc switch s chuyn qua chn Root Port. Root Port l mt
port trn Root Bridge. Mi brigde (tr Root Bridge) phi la chn mt Root Port.
Ch : Mi bridge (tr Root Bridge) s la chn Root Port.
Bridge s s dng khi nim chi ph xt Root Port. C th l cc bridge theo di chi ph
ng i gc, chi ph tch ly ca tt c cc link n Root Bridge. Hnh 3.9 m t lm th no
tnh ton qua nhiu bridge v kt qu ca vic quyt nh Root Port.
(1): Khi Cat-A (Root Bridge) gi cc BPDU, th n cha chi ph ng i gc l 0.
(2): Khi B nhn cc BPDU ny, n thm vo chi ph ng i ca port 1/1vo chi ph
ng i gc cha trong BPDU nhn. Gi s rng mng ang chy switch Catalyst
Trang 40
5000 c m ln hn phin bn 2.4 v ba lin kt trong hnh 3.9 u l Fast Ethernet.

Cat-B nhn chi ph ng i gc l 0 v thm vo chi ph ca port 1/1 l 19.
(3): sau Cat-B s dng gi tr 19 v gi BPDU vi chi ph ng i gc l 10 ra
port 1/2.
(4): khi Cat-C nhn BPDU ny t B, th n tng chi ph ng i gc thnh 38
(19+19).
(5): tuy nhin Cat-C cng nhn BPDU t Root Bridge trn port 1/1. Cat-C s thm
vo port 1/1 vi chi ph l 0, v ngay lp tc n tng chi ph ln 19.
(6): Cat-C thy chi ph ng i gc l 19 trn port 1/1 v 38 trn port 1/2, n quyt
nh port 1/1 l Root Port (chn gi tr nh nht).
(7): sau Cat-C bt u qung b chi ph ng i gc vi gi tr 19 n cc switch
xui dng.
Hnh 3.9 khng ni chi tit Cat-B cng tnh ton v chn ra port 1/1 l Root Port vi chi ph
l 19, v ch l khi mt port nhn BPDU th chi ph s tng dn.
Ch :
Chi ph STP c tng khi mt port nhn BPDU, ch khng phi v n c gi ra
khi port. V d nh, cc BPDU n trn port 1/1 ca Cat-B vi chi ph l 0 v tng
ln 19 bn trong Cat-B.
S khc nhau gia chi ph ng i v chi ph ng i gc.
Trang 41
Chi ph ng i l gi tr c gn cho mi port, n c thm vo cc BPDU c

nhn trn port tnh ton chi pha ng i gc.
Chi ph ng i gc l chi ph tch ly n Root Bridge. Trong BPDU, y l gi tr
ca trng chi ph. i vi mt bridge, gi tr ny c tnh bng cch cng cc chi
ph ng i ca cc port nhn vi gi tr cha trong BPDU.
Bc 3: quyt nh Designated Port
Mi on mng trn mt bridge c mt Designated Port, port ny c chc nng nhn v gi
lu lng n on mng kia v Root Bridge. Nu ch c mt port nm gi lu lng trn mi
link, th tt c vng lp b ph b. Bridge cha Designated Port c gi l Designated Bridge
cho on mng .
Vic la chn Designated Port cng da trn chi ph tch ly ca ng i gc n Root
Bridge (hnh 3.10).
nh v Designated Port, ta hy nhn vo mi on mng. u tin l on 1, lin kt gia

Cat-A v B c 2 port l Cat-A: port 1/1, v Cat-B: port 1/1. Port 1/1 ca Cat-A c chi ph ng
i gc l 0, v port 1/1 ca B l 19 (gi tr 0 c nhn trong BPDU t A cng vi chi ph ng
i c gn cho port 1/1 ca B). V port 1/1 ca A c chi ph ng i thp hn nn n tr thnh
Designated Port i vi lin kt ny.
i vi on mng 2 (kin kt gia Cat-A v C), tng t port 1/2 ca 1 tr thnh
Designated Port. Ch l mi port hot ng trn Root Bridge u tr thnh Designated Port.
By gi hy xem on 3 (lin kt gia B v C), c hai port 1/2 ca B v 1/2 ca C u c chi
ph ng i gc l 19. y l mt s hn ch, v STP thng s dng trnh t 4 bc quyt
nh:
Root B-ID thp nht.
Chi phi ng i n Root Bridge thp nht.
Trang 42
BID ca Sender thp nht.

ID ca port thp nht.
Trong v d hnh 3.10, tt c cc bridge u tn thnh Cat-A l Root Bridge, c B v C u
c chi ph l 19, nn ta s ly yu t BID quyt nh. BID ca B l (32.768.BB-BB-BB-BB-
BB-BB) v ca C l (32.768.CC-CC-CC-CC-CC-CC), do port 1/2 ca B l Designated Port
cho on 3.
V d trong mt mng cha 15 switch v c 146 on mng (mi port l mt segment duy
nht), s thnh phn STP hin c l
Cc thnh phn STP S
Root Bridge 1
Root Port 14
Designated Port 146
Bng 3.2: Cc thnh phn STP trong

mng c 15 switch v 146 on mng
Tt c cc quyt nh DTp u da trn mt trnh t nh cp:

Root BID thp nht.
Chi ph ng i n Root Bridge thp nht.
Sender BID thp nht.
Port ID thp nht.
Khi mt port nhn BPDU n s so snh vi cc BPDU nhn c trn cc port khc (cng
nh BPDU c gi trn port ). Ch BPDU tt nht mi c lu li. Tt nht y c ngha
l gi tr thp nht (v d nh BID thp nht tr thnh Root Bridge, gi tr thp nht cng c s
dng chn Root Port v Designated Port). Mt port s ngng truyn BPDU nu n nghe c
mt BPDU tt hn BPDU ca n truyn.
3.1.5 Cc trng thi ca STP

Sau khi bridge phn chia c cc port nh Root Port, Designated Port v non-Designated
Port, th vic to ra topology cha loop-free khng phc tp lm, Root Port v Designated Port
chuyn tip lu lng, trong khi non-Designated Port th kha lu lng. Vic chuyn tip v
kha ch l 2 trng thi thng thng trong mng, bng 3.3 m t 5 trng thi ca STP.
Trng thi Mc ch
Chuyn tip (forwading) Gi v nhn d liu ngi dng
Hc hi (learning) Xy dng bng bridge
Lng nghe (listening) Xy dng active topolygy
Trang 43
Kha (blocking) Ch nhn cc BPDU
V hiu ha (disable) Cc port b down
Bng 3.3: Cc trng thi ca STP
Trng thi Disable cho php ngi qun tr mng qun l vic ngng hot ng ca mt port.
Sau khi khi to, cc port bt u trong trng thi Blocking lng nghe cc BPDU.
Do s a dng ca cc s kin m bridge truyn trong trng thi Listening (v d nh mt
bridge ngh n l Root Bridge ngay sau khi khi ng). trng thi ny, khng c d liu ngi
dng c truyn qua, tc l port ang gi v nhn cc BPDU c gng xc nh active
topology. Trong trng thi Listening s dng 3 bc hi t ni trn, cc port b mt quyn
Designated Port ch nh tr thnh non-Designated Port v tr li trng thi Blocking.
Cc Designated Port v Root Port sau 15s (gi tr mc nh ca b nh thi) s chuyn qua
qua, m xy dng bng bridge ca n. Khi Bridge nhn frame, n a a ch MAC v port vo
trng thi Learning. Trong khong 15s khc, bridge vn khng chuyn cc frame ca ngi dng
u.
bng bridge. Trng thi learning s gim bt s lng trn ngp khi vic chuyn tip d liu bt
Ch : Trong vic lu tr a ch MAC v thng tin port, cc Catalyst hc cc thng tin nh

VLAN ngun.
Nu mt port vn l Designated Port hay Root Port khong thi gian cui ca trng thi
Learning, th port chuyn qua trng thi Forwading. trng thi ny, n bt u gi v nhn cc
frame ca ngi dng. Hnh 3.11 m t trng thi cc port v vic chuyn trng thi.
Trang 44
cc port u chuyn tip tr port 1/2 ca Cat-C.

Hnh 3.12 biu din mng vi s phn chia port v danh sch cc trng thi. Ch l tt c
Trng thi/port K hiu
Blocking B
Forwading F
Designated Port DP
Root Port RP
Non-Designated Port NDP
Bng 3.4 : Cc trng thi STP v

cc k hiu port
3.1.6 B nh thi gian STP

Mt bridge tri qua 15s mi trng thi Listening v Learning. STP c iu khin bi ba
b m thi gian (timer) nh trong bng 3.5.
Trang 45
Mc ch
mc nh
Gi tr
Timer
Hello Timer Khong thi gian gi cc BPDU 2s

cu hnh gi bi Root Bridge
Forward Delay Thi hn trng thi Listening 15s

v Learning
Max Age Thi gian lu tr BPDU 20s
Bng 3.5: STP Timer
V d: gi s rng link on 3 trong hnh 3.12 s dng mt Hub v port 1/2 ca Cat-B truyn
ra ngoi. Cat-C khng thng bo li lin v n vn ang nhn lin kt Ethernet t Hub. Cat-C ch
thng bo l cc BPDU ngng n. Sau 20s (Max Age), th port 1/2 ca Cat-C ly thng tin
BPDU c vi port 1/2 ca Cat-B l Designated Port cho on mng 3. iu ny lm cho port 1/2
ca Cat-C truyn trong trng thi Listening c gng tr thnh Designated Port. V vy Port 1/2
ca Cat-C cung cp truy cp tt nht t Root Bridge n lin kt ny, nn n chuyn sang trng
thi Forwarding. Nh vy, Cat-C mt 50s (20s Max Age + 15s Listenning + 15s Forwarding)
vt qua sau khi port 1/2 trn Cat-B b li.
Trong trng hp ny, cc bridge c th pht hin s thay i topolo gy mng trn cc lin
kt kt ni trc tip v ngay lp tc chuyn sang trng thi Listening m khng cn ch thi gian
Max Age. Xem v d trong hnh 3.13.
ngay lp tc port 1/2 ca Cat-C chuyn sang trng thi Learning tr thnh Root Port mi thay
Trong trng hp ny, port 1/1 ca Cat-C b li, v lin kt trn Root Port cng b li nn
Trang 46
v ch 20s ri mi ly thng tin c. iu ny lm cho thi gian hi t STP gim t 50s xung 30s
(15s Listening + 14s Learning).
Ch : thi gian hi t STP l t 30s n 50s.
Hai im quan trng cn nh khi s dng b nh thi STP l:
Th nht: khng thay i gi tr thi gian mc nh khi khng c s cn nhc cn
thn.
Th hai: ta ch c sa thi gian t Root Bridge.
3.1.7 Hai loi BPDU

C hai loi BPDU l :
BPDU cu hnh.
BPDU thng bo thay i topology mng TCN BPDU (Topology Change
Notification BPDU).
BPDU cu hnh c bt u bi Root Bridge v pht ra trn cc con ng hot ng t
Root Bridge, cn TCN BPDU hng v Root Bridge cnh bo vi Root Bridge l topology
mng c s thay i.
BPDU cu hnh : cc trng trong BPDU cu hnh c tm tt trong bng 3.6
Chiu di
Trng ngha
(octet)
Protocol ID 2 Lun bng 0
Version 1 Lun bng 0
Type 1 Cho bit kiu BPDU

BPDU cu hnh = 0
Flag 1 LSB = C thay i topology mng

MSB = C xc nhn thay i topology
mng
Root ID 8 BID ca Root Bridge hin ti
Chi ph tch ly n Root Bridge

(chi ph ng i
Root Path Cost 4
gc)
Sender BID 8 BID ca bridge hin ti
Port ID 2 ID ca port gi BPDU ny
Message Age 2 Khong thi gian t khi Root Bridge

to BPDU n khi pht BPDU i.
Trang 47
Max Age 2 Khong thi gian lu thng tin BPDU
Hello Time 2 Khong thi gian gia cc BPDU
Forward Delay 2 Thi gian trong trng thi Listening v

Learning
Bng 3.6 : Cc trng trong BPDU cu hnh
TCN BPDU (Topology Change Notification BPDU) :

TCN BPDU n gin hn BPDU cu hnh v ch gm c ba trng. TCN BPDU ging nh
ba trng u tin ca BPDU cu hnh nhng trng Type th thay i vi gi tr nh sau :
0x00 (0000 0000): BPDU cu hnh.
0x80 (1000 0000): TCN BPDU.
Ch : TCN BPDU khng mang bt c thng tin b sung no.
3.1.8 Qu trnh thay i topology

Nu TCP BPDU n gin th lm th no n th hin c vai tr quan trng ca n? Ta hy
xem xt s thay i topology mng trong hnh 3.14.
Host D ang lin lc vi host E qua hai bc:
(1): lu lng t host D qua Cat-B lin lc vi host E.
(2): gi s b thu pht trn port 1/2 ca Cat-B b hng.
Trang 48
Nh tho lun, port 1/2 ca Cat-C mt 50s tr thnh Designated Port. Tuy nhin nu
switch u cha a ch MAC ca host E trong bng Bridge nh bng 3.7.

khng c TCN BPDU th n tip tc b ngt khong 250s. Trong khong thi gian li, c ba
Port lin quan n a

Bng Bridge
ch MAC ca host E
Cat-A Port 1/1
Cat-B Port 1/2
Cat-C Port 1/1
Bng 3.7: Gi tr bng Bridge trc khi

c s thay i topology mng
TCN BPDU l mt cch n gin ci tin thi gian hi t, v n lm vic cht ch vi

BPDU cu hnh nh sau:
1. Mt bridge bt u mt TCN BPDU khi:
N chuyn mt port sang trng thi Forwarding v n c t nht mt
Designated Port.
N chuyn mt port t trng thi Forwarding hoc Learning sang Blocking.
S thay i topology i hi phi gi thng bo n Root Bridge, gi s rng bridge hin ti
khng phi l Root Bridge, th n bt u qu trnh thng bo bng cch gi TCN BPDU ra Root
Port ca n. N tip tc gi TCN BPDU cho n khi thng ip TCN c xc nhn.
2. Upstream Bridge s nhn TCN BPDU. Mc d, mt vi bridge nghe c TCN
BPDU (v n kt ni trc tip n on mng ca Root Port) nhng ch c Designated
Port chp nhn v x l TCN BPDU.
3. Upstream Bridge s thit lp c xc nhn thay i topology (TCA) trong BPDU cu
hnh k tip c gi dowstream (ra Designated Port). iu ny xc nhn rng
nhn TCN BPDU bc trc v lm cho bridge khi u ngng pht TCN BPDU.
4. Upstream Bridge s truyn TCN BPDU ra Root Port ca n.
5. Tip tc bc 2 n bc 4 cho n khi Root Bridge nhn TCN BPDU.
6. Sau Root Bridge s thit lp c xc nhn thay i topology TCA ( xc nhn
vi bridge trc ), v c thay i topology TC trong BPDU cu hnh m n s gi
i.
7. Root Bridge tip tc thit lp c thay i topology TC trong tt c cc BPDU cu
hnh m n gi ra ngoi vi tng thi gian l 35s (Forward Delay + Max Age). C
ny s thu ngn gi tr 300s xung 15s (tc tr chuyn tip - Forward Delay).
Hnh 1.15 tm tt cc bc trong qu trnh thay i topology mng.
Trang 49
Da vo hnh 3.15 ta c th bit c qu trnh thay i topology mng cho hnh 3.14 nh
b qua bc 3 v 4. Sau bc 2 v 5 xy ra ng thi. Trong BPDU cu hnh k tip m Root

sau: bc 1 Cat-B v C gi TCN BPDU ra port 1/1. V upstream bridge cng l Root Bridge nn
Bridge gi i, c TCN ACK s c thit lp xc nhn l nhn TCN ca hai downstream
Age) cp nht bng bridge nhanh hn. Nh vy c ba switch u nhn c c TA v khong

Brigde. Tip theo l bc 6 v 7, Cat-A cng thit lp c TA trong 35s (Forward Delay + Max
thi gian cho bng bridge l 15s.

Ch l khong thi gian ngn 15s ny khng bt buc cho ton b bng, n ch lm qu
Tuy nhin, nu host D c gng gi mt frame n host E trong 20s (gi s host E khng ni g
trnh ny nhanh hn thi. Cc thit b tip tc ni sut 15s ny m khng cho bng bridge ngh.
ht), th frame s c trn n tt c cc on mng v a ch EE-EE-EE-EE-EE-EE khng cn

c trong bng bridge na. Ngay khi frame n host E v host E tr li, th switch hc c gi tr
bng bridge mi tng ng vi topology mi.
Bng 3.8 biu din ton b bng bridge cho a ch MAC ca E trn c ba switch sau khi
topology mi hi t v lu lng li tip tc.
Trang 50
Port lin quan n a

Bng Bridge
ch MAC ca host E
Cat-A Port 1/2
Cat-B Port 1/1
Cat-C Port 1/2
Bng 3.8: Gi tr bng Bridge sau khi

thay i topology mng
Ti thi im ny, kt ni gia host D v E c thit lp li v lu lng li tip tc. Ch

l TCN BPDU gim thi gian li t 300s (5ph) xung 50s.
Hnh 3.16 m t trng c trong BPDU cu hnh, c hai c TCA v TA u c lu tr
trong cng mt octet ca BPDU cu hnh.
Nh tho lun, c TCN c thit lp bi upstream bridge ni cho cc dowstream

bridge ngng gi TCN BPDU. Cn c TC c thit lp bi Root Bridge giam khong thi
gian li t 300s xung 15s (Forward Delay).
3.2 Cc kiu STP

Trong phn 3.1 ta tm hiu hot ng ca STP lm th no ngn chn v khi phc t
s thay i topolofy mng mt cch kp thi. u tin STP c pht trin hot ng trong
mi trng bridge, v c bn h tr mt LAN (hoc mt VLAN). Vic thc thi STP trong mi
trng switch i hi thm s thay i v cn nhc h tr cho nhiu VLAN. V vy, IEEE v
Cisco tip cn STP khc nhau. Trong phn ny ta s xem li ba kiu STP truyn thng bt gp
trong mng switch v n lin quan vi nhau nh th no.
Ch : IEEE b sung vo chun STP ci tin tnh leo thang v hi t.
3.2.1 Common Spanning Tree (CSP)

Chun IEEE 802.1Q ni r v lin kt trunk gia cc switch cho VLAN, v n cng ni r
trng hp cho tt c VLAN. Trng hp ny c gi l Common Spanning Tree CSP. Tt c
cc CST BPDU c truyn trn VLAN nh l frame khng gn th. C mt STP cho nhiu
VLAN lm n gin ha cu hnh switch v gim bt ti cho CPU ca switch trong khi tnh ton
STP. Tuy nhin ch c mt STP th cng c nhiu gii hn. Cc lin kt d phng gia cc
Trang 51
switch s b kha v khng c kh nng cn bng ti, lm cho vic chuyn tip trn mt lin kt
khng h tr cho tt c VLAN, trong khi cc lin kt khc th b kha.
3.2.2 Per-VLAN Spanning Tree (PVSP)
Spanning Tree PVST hot ng tch ri i vi mi VLAN ring. iu ny cho php STP trn
Cisco c mt phin bn ring ca STP cung cp tnh mm do hn CST. Per-VLAN
mi VLAN c cu hnh c lp, cung cp kh nng hot ng tt hn v iu chnh cc iu
cc lin kt ny c gn cho c VLAN khc nhau.

kin r rng. Nhiu Spanning Tree cng c kh nng cn bng ti trn cc lin kt d phng khi
3.2.3 Per-VLAN Spanning Tree Plus (PVSP+)

Cisco a ra phin bn th 2 ca STP l Per-VLAN Spanning Tree Plus (PVSP+) cho php
cc thit b hot ng bn trong vi c PVST v CST. PVST+ h tr hiu qu ba nhm hot ng
STP trong cng mng Campus:
Catalyst switch chy PCST.
Catalyst switch chy PCST+.
Switch chy CST trn 802.1Q.
lm c iu ny, PVST+ hot ng nh l b chuyn i gia cc nhm CST switch.
PVST+ cng truyn thng trc tip vi PVST bng cch s dng ISL trunk. Tuy nhin truyn
thng vi CST, PVST+ phi thay i cc BPDU v khng cn gn th cho frame qua VLAN. Cc
BPDU t STP khc (VLAN khc) c truyn qua phn CST ca mng bng tunnel. PVST+ gi
cc BPDU ny bng cch s dng a ch multicast duy nht cc CST switch chuyn tip n
n cc ln cn downstream m cn phin dch n. Nh vy PVST+ v CST c th lm vic vi
nhau.
Trang 52
Chng 4: CHUYN MCH A LP MLS

(MULTI-LAYER SWITCHING)
4.1 Gii thiu v chuyn mch a lp (Multilayer Switching MLS)

S thc thi Cisco MLS u tin s dng router on a stick. Router on stick ngha l mt
interface ca router kt ni n port ca switch nm trong lp Distribution, y l mt Router bn
ngoi cung cp giao thc trunking c kh nng nh tuyn gia nhiu VLAN. Hnh 4.1 m t
kin trc router on a stick. Nh ta thy trong s , c nhiu host c ch nh cho 2 VLAN
ring bit, mt on ang chay trn VLAN 10 v on khc chy trn VLAN 50, c hai VLAN
u c kt ni n cng mt switch. Sau switch kt ni n router. y, ta biu din mt
Module l mt b x l nh tuyn c chn vo Catalyst 5000, RSM c cu hnh l mt

External Router nhng RSM ch cung cp cng chc nng bn trong. RSM - Route Switch
router bn ngoi.
no? Cc gi phi c nh tuyn qua router A, host D nm trn VLAN khc vi host A nn
By gi ta s tm hiu host A trn VLAN 10 truyn thng vi host D trn VLAN 50 nh th
switch phi gi gi n router trn interface FE0/0.10. Router bit rng ng i n VLAN 50
phi qua interface FE0/0.50. Sau router gi gi ngc li switch v chuyn tip n host D.
Ti sao phi chuyn mch lp 3? Ta thy trong hnh 4.1, vic s dng router chuyn cc
gi t host A n host D l khng c hiu qu khi n c kt ni n cng mt switch. MLS
c dng trnh vic dng router nh tuyn cc gi tip theo ca cng mt lung d liu.
Mt lung l mt mc trong bng c to bi cc thng tin trong header ca ngun v ch cho
lp 3 v 4. Switch cha thng tin nh tuyn lin quan n lung thay i cc gi sau ny.
Mt vi trng trong gi quyt nh gi l duy nht nh:
a ch IP ngun v ch.
a ch MAC ngun v ch.
Kiu dch v (ToS).
Kiu giao thc (v d: HTTP, FTP, ICMP)
Trang 52
y ch l mt vi trng tiu biu ca gi c dng thit lp lung. Mt switch c

cu hnh h tr cc lung n nh a ch IP n a ch IP, hoc switch c th h tr cc
lung phc tp vi thng tin port v giao thc.
Tm li, ta s dng MLS cho php switch chuyn tip gi u tin trong lung n router
v sau hc trn cc gi cn li trong lung router khng cn nh tuyn cho n na. Trong
hnh 4.1, switch to ra VLAN cn thit v thay i a ch MAC ch trong cc gi tip theo.
duyt intranet ca cng ty th h phi c ly thng tin t nhiu server trong nhiu khu vc khc
Trong thc t, MLS c khuynh hng lm vic tt hn khi lung gi kh ln. Nu mt user
nhau. Nu cng mt user ang download mt file qua FTP, th tht d dng thy c l hng
trm mnh n t cng mt ni v i n cng mt ni. Ch mnh ban u mi cn c nh
tuyn, cc mnh cn li ch cn chuyn mch lp 3.
Vic s dng MLS cho kt qu tt nht khi cc file c truy cp ln hoc khi cng mt kiu
thng tin c truy cp thng xuyn. Cc user kim tra email ca h mi pht cng l mt v d
ng dng to ra cc gi nh nhng thng xuyn.
4.2 Cc yu cu ca MLS
Mt vi Catalyst switch yu cu b sung phn cng s dng thng tin header ca gi.
s dng card tnh nng chuyn mch a lp MSFC (Multilayer Switch Feature Card) v card
Trong khi Catalyst 3550 v 4000 vi card Supervisor IV c b x l on-boad, th Catalyst 6000
tnh nng chnh sch PFC (Policy Feature Card) thu thp v lu tr thng tin header (ta nh
li l Catalyst 5000 s dng card NetFlow Feature thu thp v lu tr thng tin).
MLS i hi ba thnh phn thc hin cc chc nng trong bt c mng no:
B x l nh tuyn MLS (Multilayer Switching Route Processor MLS-RP): l
mt router c gn trc tip, y l router bn ngoi c kh nng MLS hoc l mt
RSM ci t trong switch.
Phng tin chuyn mch ca MLS (Multilayer Switching Switch Engine MLS-
SE): l mt switch c kh nng MLS (Catalyst 6000 vi MSFC v PFC).

trn router v cho php n truyn thng vi MLS-SE i vi topolpgy mng v cc
Giao thc MLSP (Multilayer Switching Protocol MLSP): l mt giao thc chy
thay i security.
4.3 Cc th tc ca MLS (MLS Procedure)

Ta bit v ba thnh phn ca MLS ( l MLS-RP, MLS-SE, MLSP), iu ny rt quan
trng hiu lm th no ba thnh phn ny lm vic vi nhau cho php chuyn mch lp 3.
By gi hy xem mt v d v topology mng n gin m h tr MLS.
Hnh 4.2 biu din kin trc n gin gm c mt router v mt switch vi 2 host c kt
ni trn switch. Cc host ny nm hai VLAN khc nhau, yu cu s can thip ca router
nh tuyn cc gi. Ch rng hnh m t interface chnh vi hai interface con l FE0/0.2 v
FE0/0.3. Topology hin ti i hi tt c cc gi gi t client trn VLAN 3 n client trn VLAN
2 u c nh tuyn bi router bn ngoi. Nu s lng gi ln, th iu ny to ra nhiu vic
khng cn thit.

MLS thc hin bn bc thit lp chc nng chuyn mch lp 3 nh sau:

Pht hin giao thc MLSP: MLS-SE s dng MLSP gi cc gi hello ra tt c
cc interface pht hin bt k thit b MLS-SE no v thit lp quan h ln cn
MLS-RP/MLS-SE.
Nhn dng cc gi i din (Candidate): PFC xem xt cc gi vo, v n chuyn tip
cc gi n router nn n to cc mc lu tr chng, do gi ny i din cho mt
lung. Mt gi i din s c tr v t router.
Nhn dng cc gi enable: card PFC xem xt cc gi n t MLS-RP v c gng nh
x chng vi cc mc cha gi i din. Nu thc hin nh x th cc gi ny s c
gn th v mc chuyn tip c to trong bng CAM (Content Addressable
Memory). Shortcut ny ni vi switch lm th no nhn bn hiu qu ca vic nh
tuyn. Mi th m router lm trn gi, by gi switch u c th lm c.
Chuyn mch lp 3 ca cc gi enable trong cng mt lung: cc gi vo c so
snh vi cc mc trong bng CAM. Nu cc gi nh x ng tiu chun lung, th
switch s gi thng tin shortcut v thay i cn thit ri chuyn tip trc tip n port
thch hp i vi lung.
4.3.1 Pht hin MLSP

Switch cn router thc hin tra cu bng nh tuyn ban u v ghi li cc gi. lm
c iu ny th i hi vic thit lp MLS gia switch v router bng cch s dng giao thc
MLSP.
Ban u, router hoc MLS-RP gi cc gi hello cha tt c a ch MAC v cc VLAN
c cu hnh s dng trn router. Cc message ny c gi 15s mt ln n a ch
multicast lp 2 (01-00-0C-DD-DD-DD). y l a ch cho tin trnh CGMP (Cisco Group
Management Protocol), y l giao thc router dng gi cc lnh multicast n cc Catalyst
switch. Thit b MLS-SE s nhn cc gi hello trn mng.
MLS-SE trong mng lp 2. Lp 2 c ni n v thit b MLS-SE ch lin quan n cc thit b

Khi mt MLS-SE nhn thng tin, n to mt mc trong bng CAM cho tt c cc thit b
kt ni trc tip vi thit b lp 2, nh cc switch. Hnh 4.3 m t qu trnh pht hin giao thc
MLSP.

Thng tin c lu tr trong bng CAM sau khi nhn mt gi hello ca giao thc MLSP l
ID c gi l XTAG. XTAG l mt nh danh duy nht m cc switch MLS s dng gi cc
ng i ca cc MLS router trong mng. Tt c a ch MAC v cc VLAN s dng trong
MLS-RP c kt hp vi gi tr XTAG trong bng CAM.
MLS Cache:
Sau khi cc MLS-SE thit lp cc mc CAM cho MLS-RP, th switch sn sng bt u qut
cc gi v to cc mc lu tr. y l bc nhn dng cc gi i in v cc gi enable.
Cc mc lu tr c to cha d liu lung. Lung d liu cho php MLS-SE ghi li cc
gi vi a ch MAC ngun v ch mi, sau chuyn tip cc gi. Tt c iu ny c thc
hin m khng phi gi cc gi n router tm mt con ng v c ghi li.
Vic ghi vo mc lu tr c 2 bc sau:
Tip nhn cc gi i din.
Tip nhn cc gi enable.
Sau khi cc mc ny c to ra trong MLS-SE, th cc gi enable c nh x vi mc ca
cc lung tn ti v c gii quyt ph hp.
4.3.2 Nhn dng cc gi i din

Tin trnh nhn dng cc gi i din kh n gin. V n c thit lp ri, nn MLS-SE
c mc a ch MAC ca bt k hoc tt c cc interface n t MLS-RP. MLS-SE s s dng
thng tin ny bt u nh x cc frame n bt k a ch MAC no lin quan n MLS-RP.
Mt frame n s c nh x da vo mt trong 3 tiu chun sau:
Khng i n a ch MAC ca MLS-RP.
i n a ch MAC ca MLS-RP, v cache lu tr lung ny ri.
i n a ch MAC ca MLS-RP, nhng cache cha lu tr lung ny.
Hot ng khc nhau s c thc hin bi MLS-SE, ph thuc vo tiu chun nh x.
ch n khng phi l MLS-RP

Nu frame khng n a ch MAC ca MLS-RP, th khng to mc no trong cache. Nu

frame n a ch MAC c trong bng CAM, th frame c chuyn mch lp 2. Hnh 4.4 m t
cc s kin xy ra ca gi i din.
tn ti mc lu tr
Khi cc frame qua switch n a ch MAC ca MLS-RP, th switch s kim tra xem cache
lu mc thuc tnh ca gi thc hin nh x hay cha?
Mi frame c cc thuc tnh c trng, cho php MLS-SE phn loi gi vo trong lung. Tt
c cc gi t a IP ny v n cng a ch IP khc th switch s t n vo cng mt lung.
MLS-SE s dng cc thuc tnh trong mc lu tr ca cache nh x thng tin header trong cc
gi sau ny. Nu cc gi n c cng thuc tnh vi mc lu tr lung c thit lp, th gi
chuyn mch lp 3.
Cha tn ti mc lu tr
Khi mt frame nh trc cho a ch MAC ca MLS-RP vo switch, th n s c so snh
nu khng tm thy mc lu tr lung, th mt mc lu tr mi c to. Ti thi im ny, gi
c gn th l gi i din.
Sau khi mc lu tr c to, gi c chuyn tip n router (MLS_RP). y router s
thc hin tm ng i, ghi li header lp 2 v gi gi ra interface ca chng k tip.
cc gi n v chuyn tip n n router nn cache s khng hon thnh vic lu tr thuc tnh
Trng thi lu tr ca MLS ch mang tnh cc b trong phm vi ny. Bi v MLS-SE ch thy
ca lung. Sau khi gi t router i ngc tr li th cache mi hon thnh vic lu tr thng tin
ca lung.
4.3.3 Nhn dng cc gi enable
n a ch MAC ca MLS router v cc gi n t MLS router vi hy vng lu tr thng tin nh

Gi enable l gi hon thnh cache lu tr lung. MLS Switch s xem xt tt c cc frame
x ca gi i din. Nu nh x thnh cng, th gi c gn th l gi enable, v cc yu t cn

li ca cache lu tr lung s c hon thnh trong bng CAM. Hnh 4.5 m t cc gi enable.

S nh x da trn cc tiu chun sau:

a ch MAC ngun t mt MLS-RP.
a ch IP ch c nh x vi a ch IP ch ca gi i din.
a ch MAC ngun kt hp vi gi tr XTAG thnh a ch MAC ch ca gi i
din.
Nu tha c ba tiu chun ny, th MLS-SE s hon thnh mc lu tr trong cache.
S thay i frame
iu quan trng l phi tm hiu chuyn mch shortcut (ng tt) xy ra lp 3. Cc frame
lp 2 l mt phn ca cuc ni chuyn nhng n sau frame u tin c ghi li bi switch.
gm c s thay i VLAN, a ch MAC ngun v ch, v tng kim tra (checksum). MLS-SE
Thng thng, mt router (hay thit b lp 3) s ghi li frame vi thng tin cn thit. Vic ghi li
cng sa i TTL, TOS v s ng gi (encapsulation).

V cc gi ny khng c gi n router, nn MLS-SE phi thc hin chc nng ghi li. Khi
switch thay i a ch ngun v ch, th MLS-SE s dng a ch MAC ca MLS-RP l a ch
ngun, v thay a ch MAC ch l a ch MAC ca host c kt ni trc tip. Sau , frame
n host ch cng ging nh n n router. Hnh 4.6 m t s khc nhau gia frame n v
frame i.

4.3.4 Cc gi theo sau

Sau khi cc gi i din (candidate) v gi enable c nhn dng, v cache thit lp c
mc lu tr cho lung , th cc gi theo sau c chuyn tip bi switch n ch m khng
cn phi s dng router. MLS-SE c kh nng ghi li cc frame, sau thay i cc trng cn
thit trong frame ri chuyn trc tip frame n host ch.
MLS-SE lu tr thng tin cn thit nh a ch MAC v IP ca ngun v ch, v a ch
MAC ca MLS-RP. MLS-SE s s dng thng tin ny nhn dng cc gi theo sau ca lung,
ghi li frame v chuyn tip cc gi n ch thch hp.
4.4 S dng cc topology mng cho php MLS
cho php cc gi i din v enable i qua router v switch ng cch. Nu c hai gi i din v
Mt vi topology h tr MLS. Theo bn cht ca MLS, ch topology h thng chc chn mi
enable khng c nhn dng, th khng th hon thnh mc lu tr lung. Cc topology cho
php MLS bao gm:

router) v mt switch. Router c mt kt ni vo mng, n c gi l stick. (xem
Router on a stick: gm c mt router (internal RSM/MSFC router hoc external
hnh 4.7)

Nhiu switch v mt router: n ch c chp nhn nu ch c mt switch kt ni n

router v cc switch c kt theo mt ISL trunk.
4.5 CEF (Cisco Express Forwarding) chuyn tip vi mc ch ring bit ca Cisco.
Catalyst 3550 v 4000 thnh thong c m t nh l MLS. Tht vy, 3550 c qung b
h tr chuyn mch a lp da trn CEF. CEF khng ging nh s thc thi MLS khc, n
khng lu tr nh trc y na. Cache a ra mt s cn thit nh a ch. V d nh, mt
cache ng trong bao lu? cache cho php ln thm bao nhiu? V lm th no ta gii quyt s
thay i topology nh tuyn m khng da vo mc lu tr.
sn sng thy s tin trin t nh tuyn n chuyn mch lp 3, hy xem xt qu trnh
chuyn mch, chuyn mch nhanh, v chuyn mch trong iu kin tt nht.
4.5.1 Qu trnh chuyn mch (Process Switching)

Khi cc gi c chuyn mch, th gi c chuyn tip qua cu trc bn trong n b x l
nh tuyn. y l tri tim ca router v l ni bn rn, thng truy cp theo hai bus, l
Cbus v bus h thng. Cc gi i khp router v c chuyn tip. B x l nh tuyn s chuyn
tip qua interface v ghi li thng tin MAC header. Tuy c tr ng k, nhng cng c mt vi

thun li nh nu bng nh tuyn gi nhiu ng i n ch vi chi ph nh nhau, th vic cn

bng ti c thc hin.
Process Switching c biu din trong hnh 4.9, s ny m t bn cht ca Process
Switching, mt gi phi chuyn qua b x l nh tuyn ca router, v kt qu l chuyn tip
chm.
4.5.2 Chuyn mch nhanh (Fast Switching)
Fast Switching s dng cache trn b x l nh tuyn bo qun thng tin chuyn tip. Gi
Ging nh Process Switching, Fast Switching c sn trn nn Cisco, k c Catalyst 2500.
u tin trong mt cuc ni chuyn c chuyn n b x l nh tuyn, nh x da vo ng

i, v x l chuyn mch. Cache ca Fast Switching c cp nht v cc gi theo sau ch nh x
thng tin header vo trong cache. Kt qu l cuc ni chuyn c chuyn tip m khng qua b
x l nh tuyn.
Thng tin chuyn tip c lu tr trong mt cy nh phn, cho php quyt nh bit-by-bit
thc hin i vi chng k tip. Cy nh phn ny i hi 32 mc so snh nh x hon ton
mt ng i, v c xem nh l mt k thut truy tm rt hiu qu.
Cc mc trong cache ca Fast Switching c to khi bt u mt cuc ni chuyn, v v vy
phi chu ng vn tn ti ca cache l lm th no cp nht thng tin khc, nh ARP cache,
nh hng n thng tin lu tr? V cu tr li l n khng cho php thay i trong ARP cache
m n ch b cache khi qu gii hn thi gian v thng tin khng cn ng na. Trong trng
hp ny, cache phi c to li. Vn th 2 vi Fast Switching l cache ch xy dng mt con
ng n ch, v vy vic chia tai phi da trn cuc ni chuyn vi mt mc lu tr cho mi
cuc ni chuyn.
Tuy nhin, Fast Switching c l nhanh hn gp 10 ln so vi tin trnh chuyn mch v c
s dng rng ri.
Fast Switching Tree c biu din trong hnh 4.10. Mi bit trong a ch ch c so snh
vi bng v v v ch c 2 kh nng l 1 hoc 0, nn mt nh x thnh cng vi mt con ng.

4.5.3 Chuyn mch trong iu kin tt nht (Optimum Switching)
Fast Switching. im khc nhau u tin l hot ng ca cy. Thay v dng cy nh phn vi
Optimum Switching cng da trn vic lu tr, nhng c mt s khc nhau quan trng vi
mi mc l mt so snh, th n s dng 256 cch (multi-way tree). Mi mc cho php chn mt

octet trong a ch ch, kt qu l tm c bt k a ch ch no.
Optimum Switching rt nhanh, nhng vn chu ng cng vn ca cache v v vy cn
c c khong thi gian ngt cc lung optimum trong khi cache c xy dng li t cc
yu cu n b x l nh tuyn ln na.
Cy ca Optimum Switching c biu din hnh 4.11. Mi octet trong a ch chm thp
phn 32 bit c nh x ring l, v kt qu l qu trnh truy tm nhanh hn.
4.5.4 Qu trnh chuyn tip CEF (CEF Forwarding Process)

CEF duy tr 2 bng ring bit nhng c quan h vi nhau, l bng chuyn tip (forwading
table) v bng k tip (adjacency table). Bng chuyn tip cha thng tin nh tuyn v bng k
tip cha a ch chng k tip (lp 2). CEF s dng mt trie thay cho cy. Trie l mt con tr s
dng vi cu trc d liu nhng trn thc t khng cha d liu. N cho php d liu c lu
tr thch hp nht vi kiu d liu c lu tr, v qu trnh truy tm c tch ring ra t d
liu.

S tch ring trong cu trc d liu c ngha l qu trnh truy tm c quy, cho php cc
con ng i khc nhau c la chn cho cc gi k tip, v vy chia ti c cc gi enable.
Ngoi ra, nu thng tin trong cache thay i, v vic tuy tm c thc hin ring bit mi ln,
nn hu ht thng tin up-to-date lun c s dng.
Qu trnh chuyn tip CEF c biu din trong hnh 12. S ny m t vic truy tm
nhanh hn v cu trc d liu 256-way ny l hiu qu nht ca tt c cc phng php truy tm,
v c kt hp trc tip vi bng k tip.
Kt qu ca qu trnh chuyn tip l thng lng cao hn nhiu. S tng thm tc do cu
Specific Integrated Circuit), cc bus chuyn dng v s sp xp b nh. Nhng n cng ng vi

trc ring bn trong switch hoc router, bao gm vic s dng tng thm ASIC (Application-
cc gi khng cn chuyn tip qua cc bus bn internal n b x l nh tuyn na. Ngoi ra

cn c nhiu li ch khc t CEF nh kh nng h tr chia ti m khng th t c khi s dng
mc lu tr trong Fast Switching v Optimum Switching.

Chng 5: KIN TRC AVVID CA CISCO

5.1 Gii thiu
Sut cc nm 1990, h thng Cisco mt s nh hng to ln n cc cng ty cng nh cc
c nhn lm kinh doanh. T s pht hnh cc sn phm router n vic thit k v trnh by ton
b dng sn phm Catalyst Switch, Cisco pht trin mt h thng truyn lu lng TCP/IP
mt h thng ph bin nht l con ng dn n World-Wide-Web hin nay. Cui cc nm
1990 n by gi - th k 21, Cisco cho ra cc thit b TCP/IP mc k tip c th truyn
voice (ting ni) trn TCP/IP. Sng kin mi ny c th trng tiu th bit n, l
AVVID (Architecture of Voice, Video and Intergrated Data).
AVVID l mt h thng Cisco cng kh n gin, l mt kin trc ca m thanh, video, v
tch hp d liu c to thnh t phn cng v phn mm truyn cc loi lu lng trn cng
mt mng my tnh vt l hay logic nh:
D liu my tnh ca cng ty nh email, lu lng world-wide-web, v truyn file
Voice nh gi in thoi
Video nh mt on video v hi ngh truyn hnh, hay mt phin hun luyn
Trc y khi thit k mng c chia thnh ba loi khc nhau:

FrameRelay hoc Point-to-Point WAN cho vic truyn lu lng d liu.
Cc ng truyn thoi s hoc analog.
ISDN (Intergrated Services Digital Network) l kin trc cho on video ca hi ngh.
V vy chi ph phn cng i hi kh cao bao gm cc chi ph cho mch in, s h tr, duy
tr ring cho tng mng. Cisco pht trin gii php AVVID cn gi l a kin trc (Miltiple
Infrastruture), kt ni tt c kin trc thnh mt mng TCP/IP tc cao. Vi phng php ny,
chi ph h tr v duy tr ca cng ty cng nh chi ph phn cng c gim i rt nhiu.
5.2 Tng quan v mt kin trc AVVID
php trong phn cng v phn mm. Cc phn cng v phn mm ny hot ng c lp vi
Khi tm hiu v kin trc AVVID, ta s bt gp cc thnh phn to thnh nn ton b gii
nhau, nhng n vn l mt phn ca kin trc AVVID.
5.2.1 Phn cng

Phn cng ca kin trc AVVID c to thnh t nhiu phn ring bit nh dng sn phm
Trunk, Gateway, cng nh cc module c tch hp trong cc thit b ny. Khi xy dng mt
router, cc Catalyst switch, IP Telephone Phone, IP Telephone Call Manager Server, voice
kin trc AVVID, ta cn thit lp cc phn cng ny. Sau y, ta s xem li mt s phn cng
c s dng xy dng mt kin trc AVVID
CiscoRouter:
Sut cc nm 1990, Cisco router l th phn trong thng trng router TCP/IP. Sau Cisco
tip tc ci tin v b sung tnh nng pht trin cng ngh router. Ngy nay, router ca Cisco
Trang 63
c.
c th truyn d liu nhy cm v thi gian nh voice trn mng TCP/IP vi kt qu chp nhn
7500 tt c u h tr tnh rng ln, a dng ca voice nh voice trn cng ngh IP v kt ni
Cc dng sn phm router trong kin trc AVVID nh series 1750, 2600, 3600, 7100, 7200,
router truyn thng PBX .

Cisco Catalyst Switch
Dng sn phm Cisco Catalyst Switch gn y c pht trin h tr cc chc nng
nh:
D liu tc cao.
Tnh a dng, rng ln ca voice gateway, cng nh voice trunk.
Voice lin quan n cht lng dch v QoS.
Cung cp ngun in bn trong n my thu pht cm tay IP Telephone trn chun
Cat-5.
Cisco IP Telephone
Hin nay, h thng Cisco ang ch to v gn Ethernet vo my thu pht TCP/IP Phone, my
thu pht Phone la chn, t mt line trong phng ch my thu pht n 6 line thc thi my thu
ny c nhim v chuyn voice thnh cc gi TCP/IP v chy trn Cat-5. C nhiu m hnh my
pht m thanh. Hu ht s b sung vo cc dng sn phm IP Telephone Phone u l phone da

trn IP.
Cisco Call Manager Server (MCS 7800)
Phn quan trng ca IP Telephone l phn mm qun l gi ca Cisco (Call Manager
nay phn mm Call Manager ang chy vi phin bn 3.x, c ci tin t phin bn ban u l
Software), n thay th PBX truyn thng v chy trn phn cng MCS Server ca Cisco. Hin
2.0. Call Manager Server chy Windowns 2000 trn nn c Cisco chng nhn v cung cp
lng cuc gi ln v h thng in thoi d phng.
Gateway Analog v Digital
cung cp kt ni analog hay digaital n PSTN, Cisco pht trin thit b gateway
analog h tr mt s interface analog v digital cho PSTN truyn thng. Hin nay c
gateway analog VG200 ng mt mnh (stand-alone) cng nh nhiu module hot ng bn
trong MCS Server v mt vi Catalyst switch.
Voice trunk
giao tip vi cng ngh PBX truyn thng, Cisco c mt s ng Digital T1 v cc
trunk cha interface tc chnh (Primary Rate Interface - PRI) t cc module ca router v
switch n module ring c tch hp bn trong Call Manager Server (MCS). Vic chn la
mt s module ph thuc vo tn hiu chun T1, phn on T1 (fractional T1), hoc h tr PRI,
nhng d bt k la chn no, Cisco cng c gii php ph hp vi mng .
Voice module
Nh cp trc y, t khi Cisco thng qua cc phng php modular trong dng sn
phm router v switch ca h, th c nhiu m hnh voice module la chn. Nhiu module
FXS (Foreign Exchange Station), FXO (Foreign Exchange Office), truyn v nhn E&M (Ear &

Mouth) c s dng trong router hoc Catalyst switch giao tip vi cc thit b in thoi
truyn thng.
5.2.2 Phn mm
Bn trong danh mc phn mm AVVID, c nhiu ng dng c Cisco cp n nh
thng mi in t (E-Commerce), chm sc khch hng (Customer Care), ti u lc lng lao
ng (Worfore Optimization), o to t xa (E-Learning), v xut bn trn mng (E-Publishing).
Trong phn ny ta s gii thiu cc sn phm phn mm hin nay nh ng dng qun l cuc gi
ca Cisco (Call Manager), Soft Phone, Web Attendant, v Active Voice.
Call Manager 3.0
v ngt cuc gi cng nh nh tuyn cuc gi trong mng. Hin nay, ng dng Call Manager
Call Manager l phn mm cung cp chc nng bn trong mng IP Telephone nh thit lp
chy trn Server MCS ca Cisco v c nhm li thnh nhiu Server MCS cung cp lng
cuc gi cao hn hoc thm vo chc nng d phng.
Soft Phone
ng dng Soft Phone c pht trin cung cp cuc gi cho Client, ng dng ny c
ci t trn bt k PC no kt ni vo mng IP Telephone v u cui user cn my thu pht
(header-phone) nghe v ni. Client c th nhn v gi IP Telephone trn kin trc mng
Ethernet.
Web Attendant
Web Attendant l ng dng chy chung vi Call Manager, l mt chng trnh da trn
GUI/Web bt v truyn cuc gi. Web Attendant chy trn nn PC, v khi mt cuc gi c
nhn v cn nh tuyn li, th ta s s dng phng php click and drag x l cuc gi
thnh cng.
Active Voice
Actice Voice cung cp gii php thng ip thoi v thng ip hp nht (s tng tc vi
fax v email) thc hin cc chc nng trong mng IP. Sn phm ny cng vi phn cng IP
Telephone v ng dng Call Manager s m bo hon thnh qu trnh gi, truyn thng thng
ip thoi v thng ip hp nht email v fax.
5.3 Kin trc hi t

Khi tho lun v AVVID, iu quan trng l ta phi hiu khi nim mng hi t (converged
network), n cng quan trng hiu lm th no mt mng c chuyn sang mng mi AVVID.
Khi thc thi gii php AVVID, hu ht cc doanh nghip hoc cng ty u xc nh r tnh kh
thi da trn ti nguyn v chi ph.
Cisco pht trin mt phng php gm c 3 pha chuyn sang mng thc thi kin trc
AVVID nh sau:
5.3.1 Pha 1 H thng Lagacy Voice vi li ch Toll Bypass

Pha u tin khi chuyn mt mng sang kin trc AVVID l tp trung vo mng d liu.
Trong pha ny, mng voice tn ti s gi nguyn v tr, nhng ta s tn dng kin trc d liu
cho li ch nh Toll Bypass. Hnh 1.1 l s kin trc mng tn ti khng s dng cng
ngh AVVID. Mng c hai site s dng h thng s hu voice cng nh voice email, c cc

trunk trong mng in thoi chuyn mch cng cng PSTN cho voice v video (BRI), v T1 gia
cc v tr lu lng d liu.
Pha hi t u tin c biu din hnh 1.2, bc u tin l ta phi xem xt li ch ca

Voice v Video trn IP. Nu hai v tr s dng PSTN vi khong cch xa th li ch ny l hp l,
n c thc thi bi gateway trong Cisco router hoc switch ti bin ca mng WAN. Ta cng
cn chuyn mng video thng s dng H.320 sang H.323. Vic chuyn i ny c thc thi
bi thit b c gi l Video Terminal Adapter VTA bin ca mng video tn ti, v h
thng video ny s tn dng mng Ethernet thay v s dng kin trc ISDN.

5.3.2 Pha 2 thc thi song song h thng Lagacy Voice v IP Telephone
Pha th 2 c biu din trong hnh 1.4, thc thi mng IP Telephone song song vi kin trc
tn ti. iu ny s c thc hin bng cch thm vo Call Manager Server, IP Telephone,
v IP Telephone gateway mi v tr, khi cc module gateway/trunk s c hin th trong
switch Core lp 3. Pha ny cho php ta s dng IP Telephone v Call Manager Server thc hin
cc thc nng v duy tr mng Lagacy Tephone c vi PBX (Private Branch Exchange).
Pha ny yu cng yu cu hai h thng voice mail ring bit, mt Active Voice cho h thng
IP Telephone v mt h thng Voice Mail cho Telephone c.

5.3.3 Pha ba Kin trc hi t

Pha cui cng l g b h thng Legacy Voice v s dng kin trc IP Telephone 100%.
Manager Server cng nh IP Phone Handset v nn IP. Mng video cng c chuyn t H.320
Trong hnh 1.4 c switch Core lp 3 vi truy cp PSTN analog hoc digital, v Cisco Call
sang H.323 trn Ethernet qua Video Terminal Adapter VTA.

Ph lc: HOT NG CHUYN MCH

1. Hot ng chuyn mch lp 2
Trong cc mng Ethernet s dng hub, nhiu host c kt ni n mt min ng v mt
min broadcast, v mi trng truyn hot ng lp 1. Mi host phi chia s bng thng vi
cc host khc c kt ni n. Khi c nhiu hn mt host c nhu cu truyn th xy ra ng ,
v cc host phi ngng truyn v ch trong khong thi gian ri mi c truyn li. iu ny
lm cc host hot ng trong ch bn song cng (half-duplex) bi v ti mt thi im hoc n
lng nghe, hoc n truyn. Khi mt frame b li th mi host u nghe thy n. Ethernet Switch
khc phc c hn ch ny trong vi cch sau:
Min ng c gii hn, trn mi port ca switch, min ng bao gm chnh port
v thit b kt ni trc tip vo port (c th l mt host hoc mt hub).
Cc kt ni c th hot ng ch song cng hon ton (full-duplex) v khng c s
tranh chp ng truyn. Mi host c th va truyn, va lng nghe ti mt thi im.
Bng thng cng khng b chia s.
Cc frame li khng c truyn, switch s kim tra cc frame nhn c trn mi port,
v ch c frame tt mi c chuyn tip. Nh vy switch hot ng theo kiu lu tr l
chuyn tip, ngha l lu li kim tra v sau mi chuyn tip.
Ta cng c th gii hn c lu lng broadcast mt ngng no .
y l kh nng khc ca hot ng lc thng minh v chuyn tip.
1.1 Trong sut tnh cu ni
Switch c gi l multi-bridge, mi port s hu mt on mng LAN, ring bit vi cc
port khc. Vic chuyn tip frame da vo a ch MAC cha trong mi frame, switch khng th
chuyn cc fraem m khng bit c a ch ch. Hnh 2.1 biu din s pht trin t bridge 2
port, ln bridge nhiu port v sau l switch.
Trang 69
Ton b qu trnh chuyn tip cc frame s c thc hin sau bit c a ch MAC no
kt ni n port no ca switch. Switch bit c v tr r rng ca cc host hoc n hc cc
thng tin ny. Ta c th cu hnh a ch MAC khp interface ca switch, nhng vic iu khin
khi c nhiu trm ni hoc di chuyn trong mng th nhanh.
hc mt cch t ng v cc v tr ca trm, mt switch s lng nghe cc frame vo v gi
thng tin a ch trong mt bng. V frame c nhn trn mt port, nn switch s kim tra a
ch MAC. Nu a ch khng c trong bng, th a ch MAC, s port, v VLAN trn frame s
c ghi vo bng. Vic hc a ch t cc gi vo th d dng v d hiu.
Cc frame vo cng c a ch MAC ch, mt ln na, switch s tm a ch ny trong bng
ca n, hi vng tm thy s port v VLAN. Nu n c tm thy,th frame s c chuyn tip

trn port . Ngc li, frame s c chuyn tip theo kiu "n lc ti a" (best effort) bng
cch truyn qua tt c cc port thuc v VLAN ngun. iu ny c gi l trn unicast khng
c bit (Unknown Unicast Flooding) .Hnh 2.2 m t qu trnh ny, v ch s dng mt VLAN
n gin ha.
Mt switch lun lun lng nghe cc gi vo trn mi port ca n hc a ch MAC ngun.

Tuy nhin, qu trnh hc ch c cho php khi thut ton Spanning Tree Protocol (STP) quyt
nh port thng c s dng ng tin cy. STP ch l khi nim duy tr mng b lp, gip cc
frame khng b chuyn tip mt cch quy.
Cc frame cha a ch MAC ch l broadcast hay multicast cng b trn v cc a ch ch
ny khng c bit. Switch xc nh t trc cc v tr multicast, nn vic trn ny s thc
hin bng cch mc nh.
1.2 Qu trnh mt frame i trong mng switch lp
Ta bit v cc frame chuyn qua mt switch lp 2 nh th no, iu ny s gip ta cu
hnh switch cho cc chc nng phc tp. Hnh 2.3 biu din mt Catalyst switch lp 2 v qu
trnh quyt nh chuyn tip mi frame.

Khi mt frame ti mt port ca switch, n c t vo mt hng i vo ca port. Hng i

ny cha cc frame c chuyn tip, mi hng i c u tin v mc dch v khc nhau. Sau
port lm cho ph hp cc frame quan trng c x l v chuyn tip trc cc frame
khng quan trng.
V hng c phc v v frame a vo , nn switch khng ch tnh ton chuyn tip frame
i u, m cn chuyn tip n nh th no. C hai bc gii quyt c bn l :th nht l tm port
vo, v th hai lin quan n cch chuyn tip. Tt c iu ny xy ra mt lc v cc phn cng
chuyn mch c lp vi nhau v c m t nh sau:
Bng chuyn tip lp 2: a ch MAC ch ca frame c s dng nh l mt kha
trong bng b nh ni dung a ch CAM (Content Addressable Memory) hoc bng a
ch. Nu tm thy a ch, th port ra v nh danh VLAN (VLAN ID) thch hp s c
c t bng. Ngc li frame s c trn qua tt c cc port trong VLAN .
Bo mt danh sch iu khin truy cp ACL (Access Control List): ACL c dng
nhn dng frame theo a ch MAC, cc kiu giao thc (i vi cc frame khng phi IP),
a ch IP, cc giao thc, v s port lp 4. B nh a ch ba bc TCAM (Ternary Content
Access Addressable Memory) cha cc ACL.

QoS, iu khin tc lung lu lng, v nh du tham s QoS trong frame ra.
QoS ACL: cc ACL khc c th sp xp cc frame vo theo tham s cht lng dch v
TCAM cng c dng a ra quyt nh trong bng tm kim.

Bng CAM v TCAM s c ni r hn trong phn 2.3. Sau khi tm kim trong bng CAM
v TCAM, frame c t vo trong hng i trn port ra thch hp. Hng i ra xc nh bng
gi tr QoS cha trong frame hoc i qua cng vi frame. Ging nh hng i vo, hng i ra
c phc v theo tnh quan trng ca thi gian, nn cc frame c gi ra ngoi m khng b
tr do lu lng ra khc.
2. Hot ng chuyn mch a lp MLS (Multi-Layer Switching)

v 4 cha trong cc gi. Khi nim ny c gi l MLS. ng nhin l chuyn mch lp 2 vn

Cc Catalyst switch nh 3550, 4500, v 6500 cng chuyn tip frame da trn thng tin lp 3
c thc hin ti cng mt thi im, v vic ng gi lp cao hn vn cha trong cc frame.
2.1 Cc kiu chuyn mch a lp
Cc Catalyst switch c hai kiu MLS, l lu tr ng i (route caching ) v da vo cu
trc mng (topology-based). Phn ny s trnh by c hai kiu, mc d kiu th hai ch h tr cho
cc Catalyst switch ca Cisco. Ta s hiu c hai kiu chuyn mch MLS nh sau:
Route caching: yu cu mt b x l nh tuyn RP (Route Processor) v mt
phng tin chuyn mch (Switch Engine). RP phi x l gi u tin ca lung lu
lng xc nh ch n, cn SE lng nghe gi u tin v thit lp mt mc trong
lng da trn mc trong ni lu tr ca n. Kiu ny cn c gi l chuyn mch

ni lu tr ca MLS. SE chuyn tip cc gi theo sau trong thuc cng mt lung lu
Netflow LAN, da vo lung lu lng hoc yu cu, nh tuyn mt ln v chuyn

mch nhiu ln. Thm ch nu iu ny khng c s dng chuyn tip cc gi
trong Catalyst switch, th k thut ny vn pht ra thng tin lung lu lng v thng
k n.
Topology-based: s dng phn cng chuyn dng, thng tin nh tuyn lp 3 c
bng tm kim hiu qu, v vy cc gi c chuyn tip vi tc cao. V cu trc

xy dng trong c s d liu ca ton b cu trc mng. C s d liu ny l mt
nh tuyn thay i theo thi gian nn c s d liu cha trong phn cng c cp
nht t ng m khng c s bt li g. Kiu ny cn gi l Cisco Express Forwarding
CEF s c gii thiu chng 6.
2.2 Qu trnh mt gi tin di chuyn trong
Con ng m gi lp 3 i theo qua switch chuyn mch a lp cng tng t nh switch
lp 2, ngha l quyt nh chuyn tip lp 3 c thm vo, ngoi ra mt vi th bt ng c th
xy ra cho gi khi chng c chuyn tip.
Hnh 2.4 biu din mt chuyn mch a lp in hnh v qu trnh x l xy ra. Cc gi n
mt port ca switch c t vo hng i vo ng nh trong switch lp 2.

Mi gi c a vo hng i vo v kim tra a ch lp 2 v lp 3. By gi quyt nh

chuyn tip gi i u da trn hai bng a ch, trong khi quyt nh chuyn tip gi nh th no
vn da trn kt qu danh sch truy cp. Ging vi chuyn mch lp 2, tt c quyt nh a lp
ny c thc hin ng thi trong phn cng:
Bng chuyn tip lp 2: a ch MAC ch c tra cu trong bng CAM. Nu frame
cha mt gi lp 3 c chuyn tip, th a ch MAC ch l ca port lp 3 trn switch.
Trong trng hp ny, kt qu bng CAM ch s dng quyt nh frame c x l
lp 3.
Bng chuyn tip lp 3: a ch IP ch s c dng tra cu trong bng FIB
(Forwarding Information Base). Nu tm thy th c c a ch lp 3 ca chng k. FIB
cng cha a ch MAC ca mi chng k v port ra ( v VLAN ID), s tm kim
trong bng khng cn thit na.
Bo mt danh sch iu khin truy cp ACL (Access Control List): danh sch truy cp
trong v ngoi c a vo TCAM quyt nh chuyn tip mt gi c xc nh
nh vic tm kim mt bng.
QoS ACL: s phn loi, kim sot v nh du gi tt c c thc thi nh tm kim mt
bng trong QoS TCAM.
Cng nh chuyn mch lp 2, cui cng gi phi c t vo hng i ra trn port ra ca
switch. Tuy nhin, trong sut qu trnh chuyn mch a lp, ch chng k c ly t bng FIB
(ch c router mi lm c chuyn ny). a ch lp 3 nhn dng chng k v tm a ch lp 2
ca n. Ch a ch lp 2 mi c dng gi cc frame lp 2.
a ch lp 2 ca chng k phi c t vo frame thay th a ch ch gc v a ch ngun
lp 2 ca frame l ca switch a lp trc khi gi n qua chng k. Bt c router no cng lm
c chuyn , gi tr thi gian sng TTL (Time-to-Live) trong lp 3 phi tr i 1.

Bi v ni dung ca gi lp 3 (gi tr TTL) thay i, nn vic kim tra header lp 3 s

c tnh li. V v c hai ni dung lp 2 v 3 u thay i nn vic kim tra lp 2 cng c
tnh li. Trong trng hp khc, ton b frame phi c ghi li trc khi n vo hng i ra.
y cng l tnh hiu qu t c trong phn cng.
2.3 Cc trng hp ngoi l ca mch a lp
chuyn tip cc gi x l ng thi c m t phn 2.2.2, cc gi phi l "MLS-
Ready" v i hi khng thm quyt nh no. V d CEF c th chuyn tip trc tip hu ht cc
gi IP gia cc host. iu ny xy ra khi a ch ngun v ch (MAC v IP) c bit, v
khng c tham s IP khc c iu khin bng tay.
Cc gi khc khng th chuyn tip trc tip bi CEF v phi iu khin bng tay v vic
kim tra nhanh c thc hin sut cc quyt nh chuyn tip. Nu l mt gi tt, th n s c
gn c cho vic x l trong tng lai v gi n CPU ca switch x l chuyn mch nh sau:
Cc yu cu ARP (ARP Request) v Tr li ARP (ARP Reply).
Cc gi IP yu cu mt tr li t mt router (TTL, MTU, phn mnh...)
Cc IP broadcast s c tr li nh Unicast (DHCP Request, cc chc nng IP helper-
Address)
Cp nht giao thc nh tuyn.
Cc gi giao thc pht hin Cisco (Cisco Discovery Protocol).
Giao thc nh tuyn IPX v qung b dch v.
Cc gi cn m ha.
Cc gi dch a ch mng NAT (Network Address Translation).
Cc gi giao thc non-IP v non-IPX (AppleTalk, DECnet,...)
3. Cc bng c s dng trong chuyn mch
Cc Catalyst switch cha mt vi kiu bng s dng cho qu trnh chuyn mch. Cc bng
ny c thay i i vi chuyn mch lp 2 hoc a lp, v c gi trong mt b nh nhanh
nhiu trng bn trong mt frane hoc gi c so snh song song.
3.1 B nh ni dung i ch CAM (Content Addressable Memory)
Tt c Catalyst switch u s dng mt bng CAM cho chuyn mch lp 2. V frame n cc
port ca switch, nn a ch MAC ngun c hc v ghi li trong bng CAM. C port n v
VLAN u c ghi li, cng vi mt nh du thi gian (timestamp). Nu mt a ch MAC
hc trn mt port chuyn sang port khc, th a ch MAC v timestamp c ghi li cho hu ht
cc port n trc . Sau , cc mc trc s c xon. Nu tm thy mt a ch MAC c
tn ti trong bng cho port n chnh xc, th timestamp s c cp nht.
Cc switch thng c bng CAM ln truy tm nhiu a ch cho vic chuyn tip frame.
Tuy nhin, khng gian bng khng gi mi a ch c th trn mt mng ln. qun l
khng gian bng CAM, cc mc c (a ch khng c dng trong khong thi gian no ) s
b xa. Khong thi gian mc nh l 300s. Ta cng c th cu hnh switch thay i gi tr mc
nh ny.
iu g s xy ra khi a ch MAC ca host c hc trn mt port ca switch, v sau
chuyn sang port khc. Thng thng mc bng CAM gc ca host c thi hn l 300s, trong khi

a ch ca n c hc trn mt port mi. trnh vic trng lp cc mc trong bng CAM, th

switch s lm sch mc tn ti i vi a ch MAC c hc trn port khc. y l iu chp
nhn c v a ch MAC l duy nht v mt host khng bao gi c thy trn nhiu hn mt
port tr khi mng c vn . Nu switch ch rng, a ch MAC ang c hc trn cc port
qua li, n s pht ra mt thng ip bo li a ch MAC "flapping" gia hai interface.
3.2 B nh ni dung i ch bc ba TCAM (Ternary Content Addressable
Memory)
Trong cch nh tuyn truyn thng, cc ACL c th so khp, lc, hoc iu khin lu lng
c bit. Danh sch truy cp c cu thnh t mt hoc nhiu mc truy cp (ACE - Access
Control Entry), hoc so khp cu lnh c c lng (Evaluating) trong lnh theo sau. Vic
c lng (Evaluating) mt danh sch truy cp c th b sung thi gian vo cc gi chuyn tip.
Tuy nhin trong chuyn mch a lp, tt c qu trnh so khp m cc ACL cung cp c
thc hin phn cng. TCAM cho php mt gi c c lng da vo ton b danh sch truy
cp trong bng tra cu. Hu ht switch c nhiu bng TCAM bo mt c trong v ngoi, v
cc QoS ACL c c lng ng thi, hoc hon ton trong quyt nh song song chuyn tip
lp 2 hoc lp 3.
Phn mm IOS ca Catalyst c hai thnh phn thc thi hot ng ca TCAM:
Qun l tnh nng FM ( Feature Manager): sau khi mt danh sch truy cp c to
hoc cu hnh, phn mm qun l tnh nng s bin dch, v cc ACE s c hp
nht vo trong ton b bng TCAM. Sau TCAM c tra cu vi tc chuyn
tip frame.
Qun l c s d liu chuyn mch SDM ( Switching Database Manager): ta c th
chia TCAM trn cc Catalyst switch thnh cc vng c chc nng khc nhau. Phn
mm SDM cu hnh hoc cc phn chia TCAM ny nu cn.
Cu trc bng TCAM:
ton so trng gm c hai gi tr vo l bit 0 v 1, cho kt qu nhanh nhng hot ng ca tru

TCAM l mt bng m rng ca bng CAM, nn n cng thc hin truy tm da trn thut
tng hn. V d gi tr nh phn (0 v 1) l t kha trong bng, nhng gi tr mt n cng c

s dng quyt nh bit no c lin quan thc s. Nh vy t kha ca bng TCAM c ba gi
tr l 0,1 v X.
Ton b TCAM c so snh kt hp c ba gi tr, mt n v kt qu (Value, Mask, v
Result). Cc trng c c t header ca frame hoc packet v s c da vo TCAM. Vic
nh x c thc hin nh sau:
Value: l mt chui 134 bit, gm c a ch ngun v ch, v cc thng tin giao thc
lin quan, tt c u c so trng. Thng tin mc ni n Value lin quan n kiu
danh sch truy cp c biu din trong bng 1. Value trong bng TCAM ly trc tip
t a ch, port v thng tin giao thc trong ACE.

bit mask s c thit lp so trng bit Value chnh xc. Mask s dng bng TCAM
Mask: cng l mt chui 134 bit trong cng frame. Mark ch chn cc bit Value, v
xut pht t a ch hoc bit mask trong cc ACE.

Result: l gi tr bng s cho bit hnh ng sau khi so trng xy ra bng TCAM.
V d Result c th l mt quyt nh cho php hoc khng, hoc gi tr QoS, hoc
con tr n bng nh tuyn kt tip
TI LIU THAM KHO

[1] David Hucaby. CCNP BCMSN Exam Certigication Guide, CCIE No.4594.
[2] Terry Jack. Building Cisco Multilayer Switched Networks, Student Guide 642-811.
[3] Kennedy Clark, Kevin Hamilton. Cisco LAN Switching, (Kennedy Clark CCIE #2175, CCSI,
Kevin Hamilton CCSI).
[4] Randall S.Benn. Configuring Cisco AVVID Achitecture for Voice, Video, and Intergrated
Data.
Trang 77

Campus Network

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Campus Network

Uploaded by

Copyright:

Available Formats

VnPro Cisco Authorised Training Center

Chng 1: MNG CAMPUS............................................................................................... 1

THIT K MNG CAMPUS THEO CNG NGH CISCO V Th H

Chng 1: MNG CAMPUS

tin cy nht, thit lp v duy tr kt ni n cc ngun ti nguyn.

tnh kt ni li vi nhau. Internetwork ngy cng ln mnh h tr cho cc nhu cu truyn

THIT K MNG CAMPUS THEO CNG NGH CISCO Trang 1

Thit k mt internetwork l mt cng vic th thch nng lc i vi ngi thit k. thit

1.2 Mng Campus truyn thng

1.2.1 Vn kh nng hot ng ca mng v gii php

THIT K MNG CAMPUS THEO CNG NGH CISCO Trang 2

nh port m ta s thm vo mt thit b trong mng. Ta c th thm mt thit b vo bt k port

1.2.2 Lut 80/20

v c kt ni n cng on mng vt l chia s ti nguyn mng.

THIT K MNG CAMPUS THEO CNG NGH CISCO Trang 3

user c cha bn trong on mng cc b. Ti nguyn bao gm my ch, my in, th mc

THIT K MNG CAMPUS THEO CNG NGH CISCO Trang 4

Vn ca lut 20/80 l h thng cp in v cu trc mng khng nh cc router. N c kh

v VLAN l mt nhn t ln trong vic xy dng m hnh mng Campus mi.

1.3 Cc m hnh mng Campus

thng nm trong cng mt khu vc a l. Thng thng cc mng Campus gm c Ethernet,

Wireless LAN, Fast Ethernet, Fast EtherChannel, Gigabit Ethernet v FDDI.

THIT K MNG CAMPUS THEO CNG NGH CISCO Trang 5

M hnh mng d on trc (Predictable Network Model).

1.3.1 M hnh mng chia s

1.3.2 M hnh phn on LAN

THIT K MNG CAMPUS THEO CNG NGH CISCO Trang 6

ca on LAN. Vn v VLAN s c tm hiu r chng 3.

1.3.3 M hnh lu lng mng

hp na. Ti nguyn no c sn ci tin kh nng hot ng ca mng? Do ph tn v tnh rc

THIT K MNG CAMPUS THEO CNG NGH CISCO Trang 7

Chuyn cc user mt cch logic (VLAN) hoc vt l gn nhm ca n.

cc b v ra ngoi backbone. Kiu lu lng ny t ra trng ti ln hn trong mng backbone

thit k li mng Campus tr nn qu nng n theo kp m hnh lut 20/80.

1.3.4 M hnh mng d on trc

Cc b Trn cng on Ch c lp Access

T xa Trn on mng/LAN T lp Access n lp

Enterprise Gia cc user trong mng T lp Access n lp

Bng 1.1: Cc kiu dch v mng

Lp Access, Distribution v Core l ba lp ca m hnh thit mng ba lp ca Cisco m ta s

1.4 M hnh mng ba lp ca Cisco

THIT K MNG CAMPUS THEO CNG NGH CISCO Trang 8

Ta c th thit k mng Campus mi lp h tr cc lung lu lng hoc dch v nh

r mi lp v chc nng cng nh hn ch ca n l iu quan trng ng dng cc lp ng

Thit b lp ny c gi l cc siwtch phn pht, v c cc c im nh sau:

Thng lng lp ba cao i vi vic x l gi.

THIT K MNG CAMPUS THEO CNG NGH CISCO Trang 9

Tnh co dn v cc lin kt tc cao n lp Core v lp Access.

1.5 M hnh Modular trong thit k mng Campus

mng phn cp l n v chc nng c bn (module). Cc module ny c sp xp theo kch c

thch hp v kt ni vi nhau, v n cho php tnh co dn v m rng trong tng lai.

THIT K MNG CAMPUS THEO CNG NGH CISCO Trang 10

1.5.1 Khi Switch

Distribution. Cc chuyn mch lp 2 c t trong phng dy cp in (lp Access) kt ni

THIT K MNG CAMPUS THEO CNG NGH CISCO Trang 11

Cc switch lp Acces c th h tr VLAN bng cch gn cc port nh s VLAN r rng.

chuyn mch a lp, v n s tr nn qu ti nu xut hin mt lng lu lng ng

THIT K MNG CAMPUS THEO CNG NGH CISCO Trang 12

Cc switch lp Acces c th c nhiu hn mt kt ni d phng n cc thit b ca lp

1.5.2 Khi Core

nhiu switch ging nhau trong Core d phng.

Cc lin kt gia cc lp cng c thit k mang t nht mt lng ti t lp Distribution.

THIT K MNG CAMPUS THEO CNG NGH CISCO Trang 13

Hai khi Core c bn c thit k l: