VLANs (Virtual Local Area Networks)

Definition of VLAN (Virtual LAN)

A virtual LAN or VLAN is a group of devices on one or more LANs that are configured (using
management software) so that they can communicate as if they were connected to the same
line, when in fact the devices are on a number of different LAN segments.
VLAN is also defined as a network model that is not limited to physical locations such as
LAN, this causes a network to be configured virtually without having to obey the physical
location of the equipment.

The use of VLANs will make network settings very flexible where segments can be made
depending on the organization or department, without depending on the location of the
workstation.

VLAN types
Membership in a VLAN can be classified based on the port
used, MAC address, protocol type.

By Port
Membership in a VLAN can be based on the port used by
those VLANs. For example, on a bridge/switch with 4 ports, ports 1, 2,
and 4 is VLAN 1 while port 3 belongs to VLAN 2, see table:
Ports and VLAN table
Ports 1 2 3 4
VLANs 2 2 1 2
The downside is that users can't move around, if they have to
switch, the Network administrator must reconfigure.

Based on MAC Address

Membership of a VLAN is based on the MAC address of each workstation/computer owned
by the user. The switch detects/records all MAC addresses owned by each Virtual LAN. The
MAC address is a part that is owned by the NIC (Network Interface Card) on each
workstation.
The advantage is that if the user moves, he will still be configured as a member of the VLAN.
While the drawback is that each machine must be configured manually, and for a network
that has hundreds of workstations, this type is less efficient to do.
MAC address and VLAN table
MAC address 132516617738 272389579355 536666337777 24444125556
VLANs 1 2 2 1

Based on the type of protocol used

VLAN membership can also be based on the protocol used, see table
Protocol and VLAN table
IPX IP protocol
VLANs 1 2

Based on IP Subnet Address

The subnet IP address on a network can also be used to classify a VLAN
IP Subnet and VLAN table
IP subnet 22.3.24 46.20.45
VLANs 1 2
This configuration is not related to routing on the network and also does not matter the
function of the router. The IP address is used to map VLAN membership. The advantage is
that a user does not need to reconfigure his address on the network when moving places, it's
just that because he works at a higher layer it will be a little slower to forward packets than
using MAC addresses.

Based on other applications or combinations

It is possible to define a VLAN based on the application being run, or a combination of all of
the above types to apply to a network. For example: the FTP (file transfer protocol)
application can only be used by VLAN 1 and Telnet can only be used on VLAN 2.
The application of a VLAN technology allows a network to be more flexible to support
business goals. Here are some advantages of using VLANs:
security
Departments that have sensitive data separated from the existing network, will reduce the
opportunity for breaches of access to confidential and important information.
Cost reduction
Cost savings result from the absence of the need for expensive network upgrades and
efficient use of available bandwidth and uplink.
Higher performance
By dividing the layer 2 network into several workgroups logically (broadcast domains) it
reduces unnecessary traffic on the network and improves performance.kjk
Broadcast storm mitigation
Splitting a network into VLANs reduces the number of devices participating in broadcast
storms.
Improved IT staff efficiency
With VLAN network management is easier, because users with the same network needs
share the same VLAN.
Simpler project or application management
Having separate functions makes it easier to manage a project or work with a specific
application.