| Sun Fire B10n Content Load Balancing Blade Version 1.3 Administration Guide |    
|
| Sun Fire B10n Content Load Balancing Blade Version 1.3 Administration Guide |
|
| C H A P T E R 6 |
|
Configuring VLAN Parameters |
A virtual LAN (VLAN) is a collection of network nodes that share the same broadcast domain regardless of their physical location or connection point in the network. A VLAN serves as a logical workgroup with no physical barriers. Thus users can share information and resources as though located on the same LAN. VLANs also allow a single physical LAN to be divided into multiple logical LANs. By restricting the flow of traffic between the members of different VLANs, this allows the separation of tenants or tiers.
This chapter describes the types of VLANs available and shows how to enable and configure VLAN parameters for the Sun Fire B10n blade.
This chapter includes the following topics:
The Sun Fire B10n blade CLI allows for the confutation of three different VLAN types:
As its name suggests, this VLAN is used for management traffic to and from the load balancing blade. Examples are Telnet traffic and signaling between the load balancer and the server. The latter includes service configuration messages and server module health monitoring. When the management VLAN is enabled, outbound management traffic is enforced for added security, and outbound management is tagged with this VLAN ID. There is one management VLAN per load balancing blade.
This VLAN carries inbound traffic from the client network to the load balancer. The servers are expected to use this VLAN for the response traffic back to the client network. When the load balancing blade sends packets to the client network (such as during the handshake to establish a connection), it tags these packets with this VLAN ID. However, there is no inbound enforcement for the data VLAN. There is one data VLAN per load balancing blade.
This VLAN is used for all data traffic between the load balancing blade, the server, and potentially the SSL proxy blade. Each service on the load balancing blade may have its own service VLAN configured.
The enable vlan command enables the VLAN tagging of data or management traffic from the Sun Fire B10n blade.
By default, VLAN tagging of all traffic from the blade is disabled.
When VLAN tagging is enabled, the VLAN ID used for management traffic is the one set by the management vlan command. The management VLAN setting also filters incoming traffic.
The VLAN ID used for tagging client traffic is the one set by the data vlan command.
|
As admin in config mode, enter the following command:
The enable vlan all command enables VLAN tagging for both management traffic and client traffic.
As admin in config mode, enter the following command:
The enable vlan management command enables VLAN tagging for management traffic only.
As admin in config mode, enter the following command:
The enable vlan data command enables VLAN tagging for client traffic only.
|
The data vlan command sets the default VLAN ID to be used on all outbound data traffic destined to and from the client.
This parameter must be set for each blade and serves as a default. This parameter is valid only if the content load balancing blade is enabled for VLAN tagging of outbound traffic by the enable vlan command.
The valid range for VLAN ID values is 1 to 4095.
As admin in config mode, type the following command:
Where vlan_id is the data VLAN tag. The default VLAN ID is 1.
|
The management vlan command sets the management VLAN ID on the content load balancing blade. When the management VLAN is enabled, the blade processes inbound management traffic only when it is tagged with this VLAN ID. The blade also uses the VLAN ID to tag all outbound management traffic.
The valid range for VLAN ID values is 1 to 4095.
As admin in config mode, type the following command:
Where vlan_id is the management VLAN tag. The default management VLAN is 2.
|
The no enable vlan command disables the VLAN tagging of outbound data or management traffic from the content load balancing blade.
As admin in config mode, type the following command:
TABLE 6-1 describes the parameters for the no enable vlan command:Table describing the parameters for the no enable vlan command.
By default, VLAN tagging of all outbound traffic is disabled on the content load balancing blade.
As admin in config mode, type the following command:
The no enable vlan all command disables VLAN tagging for both management and client traffic.
As admin in config mode, type the following command:
The no enable vlan management command disables VLAN tagging for management traffic only.
As admin in config mode, type the following command:
The no enable vlan data command disables VLAN tagging for client traffic only.
|
As admin in config mode, enter the enable service vlan command:
By default, VLAN tagging is disabled for a service.
|
The service vlan command sets the VLAN tag to be added to all the traffic of a service.
As admin in config mode, enter the service vlan command:
service_name is the name of the service.
vlan is the qualifier for the VLAN ID.
The valid range for VLAN ID values is 1 to 4095. The default VLAN ID is 1.
The following example uses the vlan_id of 25 for the service SVC1.
|
As admin in config mode, enter the no enable service vlan command:
By default, VLAN tagging is disabled for a service.
The following example disables VLAN tagging for the service SVC1.
|
As admin, enter the show vlan command:
You will see output similar to the following:
| Sun Fire B10n Content Load Balancing Blade Version 1.3 Administration Guide | 817-6210-10 |
|
Copyright © 2004, Sun Microsystems, Inc. All rights reserved.
To Enable VLAN Tagging