Ieee 802.1Q Vlan Tag Support - Alcatel-Lucent Security Management Server (SMS) Release 9.4 Technical Overview

Alcatel-Lucent VPN Firewall Brick

IEEE 802.1q VLAN Tag Support

...................................................................................................................................................................................................................................
Overview
The Brick device supports the use of IEEE 802.1q VLAN tagged Ethernet Frames.
Each physical port can be configured to send and/or receive tagged frames, untagged
frames, or a combination of both. A fairly unique feature is the ability to preserve tags,
if any are present. Since each port can be configured to disallow inbound tagged
frames, the Brick device is immune to VLAN tag attacks that have plagued switch
vendors in the past.
The Brick device also has the ability to support VLAN Domains, to support the case
where VLAN IDs received inbound on one trunk are not logically identical to, but
possibly conflicting with, those received inbound from another trunk. VLAN Domains
are useful when connecting to multiple VLAN trunks that may use conflicting VLAN
IDs.
Note that the Brick device can simultaneously support up to 4094 VLANs on each
connected VLAN trunk.
VLAN bridge groups increase this functionality to allow the Brick to bridge among a
set of configured VLANs. All VLANs in the bridge group can be accessed by Layer-2
forwarding, eliminating the need to use the Brick as a gateway for packets that simply
transition from one VLAN to another. Each VLAN can be then associated with a
security level, and packets can transition from one trust level to another by passing
through a firewall policy, then being switched to a different VLAN.
...................................................................................................................................................................................................................................
260-100-022R9.4
Issue 1, June 2009
™
Security Appliance
1-3