search

What is voice VLAN tag?

1 anos atrás
Comentários: 0
Visualizações: 120

In Cumulus Linux, a voice VLAN is a VLAN dedicated to voice traffic on a switch port. Voice VLAN is part of a trunk port with two VLANs that comprises either of the following:

Show
  • Native VLAN, which carries both data and voice traffic
  • Voice VLAN, which carries the voice traffic, and a data or native VLAN, which carries the data traffic in a trunk port.

The voice traffic is an 802.1q-tagged packet with a VLAN ID (that might or might not be 0) and an 802.1p (3-bit layer 2 COS) with a specific value (typically 5 is assigned for voice traffic).

Data traffic is always untagged.

Example Configuration

What is voice VLAN tag?

In this example configuration:

  • swp1 data traffic traverses the native VLAN of the bridge and the voice traffic traverses VLAN 200
  • swp2 data traffic traverses VLAN 100 and the voice traffic traverses VLAN 200
  • swp3 data traffic traverses VLAN 100 and voice traffic traverses VLAN 300

To configure the topology shown above:

NCLU Commands

cumulus@switch:~$ net add bridge bridge ports swp1-3 cumulus@switch:~$ net add bridge bridge vids 10,100,200,300 cumulus@switch:~$ net add bridge bridge pvid 10 cumulus@switch:~$ net add interface swp1 bridge voice-vlan 200 cumulus@switch:~$ net add interface swp2 bridge voice-vlan 200 data-vlan 100 cumulus@switch:~$ net add interface swp3 bridge voice-vlan 300 data-vlan 100 cumulus@switch:~$ net pending cumulus@switch:~$ net commit

Linux Commands

Edit the /etc/network/interfaces file and add the following configuration:

cumulus@switch:~$ sudo nano /etc/network/interfaces auto swp1 iface swp1 bridge-vids 200 mstpctl-bpduguard yes mstpctl-portadminedge yes auto swp2 iface swp2 bridge-pvid 100 bridge-vids 200 mstpctl-bpduguard yes mstpctl-portadminedge yes auto swp3 iface swp3 bridge-pvid 100 bridge-vids 300 mstpctl-bpduguard yes mstpctl-portadminedge yes auto bridge iface bridge bridge-ports swp1 swp2 swp3 bridge-pvid 10 bridge-vids 10 100 200 300 bridge-vlan-aware yes

Troubleshooting

To show the bridge VIDs, run the net show bridge vlan command:

cumulus@switch:~$ net show bridge vlan Interface VLAN Flags ----------- ------ --------------------- swp1 10 PVID, Egress Untagged 200 swp2 100 PVID, Egress Untagged 200 swp3 100 PVID, Egress Untagged 300

To obtain MAC address information, run the NCLU net show bridge macs command or the Linux sudo brctl showmacs <bridge> command. For example:

cumulus@switch:~$ net show bridge macs VLAN Master Interface MAC TunnelDest State Flags LastSeen -------- -------- ----------- ----------------- ------------- --------- ------- ---------- untagged bridge bridge 08:00:27:d5:00:93 permanent 00:13:54 untagged bridge swp1 08:00:27:6a:ad:da permanent 00:13:54 untagged bridge swp2 08:00:27:e3:0c:a7 permanent 00:13:54 untagged bridge swp3 08:00:27:9e:98:86 permanent 00:13:54

To capture LLDP information, check syslog or use tcpdump on an interface.

  • A static voice VLAN configuration overwrites the existing configuration for the switch port.

  • Removing the bridge-vids or bridge-pvid configuration from a voice VLAN does not remove the VLAN from the bridge.

  • Configuring voice VLAN with NCLU does not configure lldpd in Cumulus Linux; LLDP-MED does not provide data and voice VLAN information. You can configure LLDP-MED for each interface in a new file in /etc/lldp.d. In the following example, the file is called /etc/lldpd.d/voice_vlan.conf:

    cumulus@switch:~$ sudo nano /etc/lldpd.d/voice_vlan.conf configure ports swp1 med policy application voice tagged vlan 200 priority voice dscp 46 configure ports swp2 med policy application voice tagged vlan 100 priority voice dscp 46 configure ports swp3 med policy application voice tagged vlan 300 priority voice dscp 46

    You can also use the lldpcli command to configure an LLDP-MED network policy. However, lldpcli commands do not persist across switch reboots.

The terms Voice VLAN or Auxiliary VLAN typically mean the same thing: They are a feature which allows an access port — which normally only accepts untagged traffic for a single VLAN — to also accept tagged traffic for a second VLAN.

But that is merely the “what”, and if you were simply looking for a definition, then the above is all you need.

However, in order to really understand the concept, we have to look at the “why”, and also a bit of the history which brought about the Auxiliary VLAN. Doing so will reveal the use cases for the Voice VLAN or Auxiliary VLAN, as well as a particular use case for the Native VLAN.

Before we get into the details, it is important to have a solid understanding of VLANs. Namely the purpose of VLANs, Access Ports, Trunk Ports, the Native VLAN, the configuration of VLANs, and the concept of a Converged Network. If these concepts are not familiar to you, start by reading the articles and videos which explain them.

Also, the terms themselves are generally interchangeable. Voice VLAN is more often used in the Cisco context because of the command used to configure it, while Auxiliary VLAN is typically the name of the feature itself.

Voice VLAN Functionality

Imagine office cubicles. Imagine each cubicle contains a desk and a computer which an employee uses to connect to your corporate network.

What is voice VLAN tag?

When this office floor was being built, network cables were ran through the walls and ceilings from each position on the cubicle floor to the network closet where the access switch for the corporate network exists.

These cable runs are sometimes called “LAN drops” – a place an employee can connect locally (from their cubicle) into the corporate network switch (behind lock and key in the network cabinet).

You end up with a topology that looks something like this (image not drawn to scale):

What is voice VLAN tag?

Traditionally, there was one LAN drop for each cubicle.

This was sufficient when employees only had one PC or Laptop to connect to the network. They would simply plug in locally at the cubicle, and the wall jack would lead back to the corporate network switch.

The switchport would be configured as an access port in the VLAN associated with that employee’s role. The PC sends untagged data traffic, and the switch associates that traffic with the Data VLAN. On a Cisco switch, the configuration would resemble something like the following:

It is worth highlighting that (typically) PCs always send untagged traffic – this point will be important shortly.

As time went on, phones which could carry Voice traffic over the IP network (VOIP phones) started being developed. Which leaves us with a problem — if a VOIP phone is added to each desk, where could you plug it in to get access to the corporate network? There is only one available wall jack and it is already in use by the PC.

Voice and Data using two ports

One solution is to run a second LAN drop to each cubicle. This is the simplest solution from the networking perspective:

What is voice VLAN tag?

One port is dedicated to carrying Data traffic, the other is dedicated to carrying Voice traffic. They are distinguished on the Switch using a simple access port in two different VLANs (the Data VLAN and the Voice VLAN):

Most modern office buildings now include multiple ports at each cubicle in order to account for multiple devices that need to be connected to the corporate network. Unfortunately, this wasn’t always an option for office’s which were not recently built.

Voice and Data using one port

A lot of older office build outs, which already only have one LAN drop at each cubicle, simply cannot afford the additional cost or delays to pay another technician to crawl through all the ceilings and walls to run another LAN drop to each cubicle. Which means the cubicles are limited to a single LAN drop per employee.

VOIP phone manufacturers were able to foresee this problem, and created another solution built right into the VOIP phones themselves.

The majority of VOIP phones come with two Ethernet ports: One meant to face the wall jack (and subsequently, the corporate LAN), the other meant to face a PC:

What is voice VLAN tag?

Using these two ports, the PC can be connected to the phone, and the phone can subsequently be connected to the single wall jack. This allows both devices to share a single wall jack.

What is voice VLAN tag?

The key is how to configure the switch, as now the single port will be receiving both Voice and Data traffic. We’ve already determined that Voice and Data traffic must be confined to distinct VLANs, but now both types of traffic are arriving on a single port.

There are two solutions: One solution is to configure the port as a Trunk port. The other is to make use of the Auxiliary VLAN (or Voice VLAN) feature. Both solutions are discussed and compared below.

Voice and Data using a Trunk port and the Native VLAN

Traditionally, if you want to carry traffic for multiple VLANs on a single port, you would configure a Trunk port.

This would allow traffic for multiple VLANs to traverse the single link. But typically traffic on trunk ports require tagging to distinguish which bits belong to one VLAN and which bits belong to another VLAN.

VOIP phones have the capacity to send and understand 802.1q VLAN tags, and can therefore be configured to send a VLAN tag for all the Voice traffic.

PC’s, as we’ve already discussed, only send untagged traffic. As such, the switch must have a way to associate the received untagged traffic on the trunk port to a particular VLAN. This is the exact purpose of the Native VLAN.

Therefore, in order to properly configure a single port to accommodate both a Voice and Data VLAN, you must first configure the interface as a Trunk port, then configure the Data VLAN as the Native VLAN:

Voice traffic will arrive from the VOIP phone with a tag for VLAN 33. And Data traffic will arrive from the PC untagged (forwarded untouched by the VOIP phone) and be associated to VLAN 22 because of the Native VLAN configuration.

While on the surface, this solution does work, we have to go a step further. There are, in fact, two problems with using a Trunk port to carry both Voice and Data traffic.

Problem #1: Configured as above, all VLANs on the switch will traverse the trunk link

If there are only two VLANs configured on the switch (as above), then this isn’t really a problem.

If however, you had more than just two VLANs configured, such as:

Then traffic for all four VLANs would be sent down the trunk port. Leading to, at best, possible link saturation, or at worst, data leakage.

The solution would be to add yet another configuration item to the interface to limit which VLANs are able to traverse the trunk port:

This will limit the VLANs which can traverse this trunk to only the necessary VLANs.

Problem #2: The interface will not benefit from traffic optimizations that apply to Access ports

Spanning tree has an optimization known as Portfast which speeds up how quickly an access port is enabled.

Spanning tree also has an optimization known as BPDU guard which also (by default) only applies to access ports.

Port Security (by default) only applies to access ports.

There are other optimizations that exist for access ports that are tailored to ports facing network clients — like PC’s and VOIP phones.

If the interface facing your VOIP phone and PC is configured as a trunk port, it will not be able to take advantage of the optimizations which exist for access ports.

Of course, for each of these optimizations there are manual overrides that can be applied, but it increases the complexity of the network configuration. Besides, there is a much simpler solution to using a Trunk port for Voice and Data VLANs on a single port, and that solution is what this article has been building towards.

The more optimal solution is to use the Auxiliary VLAN feature (also known as the Voice VLAN).

Voice and Data using an Access port and the Auxiliary VLANs

And so, we’ve finally come to the primary purpose of this article – to describe the specific problems that are solved by the Auxiliary VLANs feature. Namely, the problem serves as an answer to the following question (note: illustration is identical to the one above):

What is voice VLAN tag?

In situations where only one physical port is available on your switch, how do you accept and receive Voice and Data traffic on one switchport while still keeping them in independent VLANs?

The solution:

First, use the VOIP phone’s built in switch – connect the PC to the phone, and the “LAN” port of the phone to the wall jack (which subsequently leads to the switchport).

Second, use the Auxillary VLAN configuration to accept the tagged voice traffic from the VOIP phone, and untagged traffic from the PC:

With this configuration, traffic arriving on the single available switchport will still be accepted in two different VLANs on your network. Allowing you to separate Voice and Data traffic, despite it arriving on the same physical switchport.

Q&A What

Postagens relacionadas

What is the process of performance management in an organization?
What is the process of performance management in an organization?

What is a catalyst Give 5 examples and its uses?
What is a catalyst Give 5 examples and its uses?

What happens to the ttl field of an ip datagram every time it reaches a router?
What happens to the ttl field of an ip datagram every time it reaches a router?

What is the conclusion of Odysseus the speaker?
What is the conclusion of Odysseus the speaker?

What is the first and most general step in designing and conducting a research investigation?
What is the first and most general step in designing and conducting a research investigation?

When the image of an object formed by a mirror is erect virtual and magnified in size than the mirror is ?
When the image of an object formed by a mirror is erect virtual and magnified in size than the mirror is ?

What is the relationship between object distance image distance and focal length of a mirror?
What is the relationship between object distance image distance and focal length of a mirror?

Why do cats sleep in between your legs
Why do cats sleep in between your legs

How long to cure gel polish under UV light
How long to cure gel polish under UV light

What is strategic leadership in education
What is strategic leadership in education

Best way to season ribs for the oven
Best way to season ribs for the oven

Where to buy sk8 the infinity manga
Where to buy sk8 the infinity manga

Esqueci de tomar o antibiótico na hora certa o que fazer
Esqueci de tomar o antibiótico na hora certa o que fazer

What is the correct order in which sound waves are transmitted through the ear I tympanic membrane II ossicles III external auditory canal IV cochlea?
What is the correct order in which sound waves are transmitted through the ear I tympanic membrane II ossicles III external auditory canal IV cochlea?

Which is the correct order of events of sound transmission through the ear 1 sound waves strike the eardrum?
Which is the correct order of events of sound transmission through the ear 1 sound waves strike the eardrum?

2022 mazda cx-5 grand touring reserve vs signature
2022 mazda cx-5 grand touring reserve vs signature

How do you make glasses on little alchemy?
How do you make glasses on little alchemy?

What is the 5 benefits in planting trees?
What is the 5 benefits in planting trees?

The Nine Lives of Chloe King Alek
The Nine Lives of Chloe King Alek

Where can I watch Rick and Morty
Where can I watch Rick and Morty

Publicidade

ÚLTIMAS NOTÍCIAS

How many factors of 400 are not multiples of 2
1 anos atrás . por WhisperedBaker
A relatively new discipline, motion graphics began with
1 anos atrás . por EnhancedSolitude
A policy loan is made possible by
1 anos atrás . por AffirmativeBonus
Its a small world meaning
1 anos atrás . por PollutedTossing
Which of the following nutrients yield energy?
1 anos atrás . por Blue-grayWarmth
What was the significance of the first continental congress in 1774?
1 anos atrás . por AtmosphericTyrant
When was Fairfield CA founded?
1 anos atrás . por IntermediateApparatus
When assessing the intensity of a patients pain, which question by the nurse is appropriate
1 anos atrás . por Door-to-doorHamburger
How many liters of water must be added to 16 liters of milk and water contains 10% water to make it 20% water in it?
1 anos atrás . por BogusMorale
How many spectral lines are obtained when an electron drops from 4th Shell to ground shell?
1 anos atrás . por BadAllegiance

Toplistas

#1
Top 8 mensagem de 30 anos de aniversário 2022
2 anos atrás
#2
Top 7 jogo do bicho palpite do dia de hoje 2022
2 anos atrás
#3
Top 7 melhor comprimido para dor de cabeça 2022
2 anos atrás
#4
Top 6 explique a influência da corrente do golfo no atlântico norte sobre a europa ocidental 2022
1 anos atrás
#5
Top 7 como é o nome da música 2022
2 anos atrás
#6
Top 7 cloridrato de meclizina para que serve 2022
2 anos atrás
#7
Top 4 existe outra regionalização que é utilizado para dividir o país em três partes 2022
1 anos atrás
#8
Top 7 500g de presunto preço 2022
2 anos atrás
#9
Top 8 o país que mais emite gases de efeito estufa atualmente é há uma grande probabilidade 2022
1 anos atrás
#10
Top 8 um elemento químico da família dos halogênios (7 elétrons na camada de valência) 2022
1 anos atrás

Publicidade

Populer

Token Data

Publicidade

Sobre

Jurídica

Ajuda

Social

homeendefrjakoptzhhi
direito autoral © 2024 cemle Inc.