Ingress Vlan Security; Icc-Vlan; Vlan Cli Commands - Avaya G250 Administration

Ingress VLAN security

Ingress VLAN Security enables easy implementation of security, and is always active. A port
that is assigned to a VLAN allows packets tagged for that VLAN only to enter the through that
port. Unassigned packets receive the PVID of the port and are therefore allowed to enter.

ICC-VLAN

When the G250/G350 includes an ICC, the ICC connects to the G250/G350 via an internal
switch. By default, the ICC is connected on Vlan 1. The VLAN to which the ICC connects is
called the ICC-VLAN.
You can use the icc-vlan command to attach the ICC to a different VLAN. Enter the context
of the VLAN interface to which you want to attach the ICC switch, and type the icc-vlan
command.
To show the current ICC-VLAN, type the show icc-vlan command from the general context.
The following example sets Vlan 2 as the ICC-VLAN:
G350-001(super)# interface vlan 2
G350-001(super-if:Vlan 2)# icc-vlan
Done!
G350-001(super-if:Vlan 2)# exit
G350-001(super)# show icc-vlan
VLAN 2
G350-001(super)#

VLAN CLI commands

The following commands are used to configure VLANs. For more information about these
commands, see Avaya G250 and Avaya G350 CLI Reference, 03-300437.
Use the clear port static-vlan command to delete VLANs statically configured on
●
a port.
Use the clear vlan command to delete an existing VLAN and its interface, remove the
●
entry from the VLAN table, and return ports from this VLAN to the default VLAN #1. When
you clear a VLAN, all ports assigned to that VLAN are assigned to the default VLAN #1.
Use the interface vlan command to create a VLAN interface, enter it into the VLAN
●
table, and enter the Interface VLAN configuration mode.
Use the no interface vlan command to delete a VLAN interface and remove the
●
entry from the VLAN table.
Configuring VLANs
Issue 1.1 June 2005 223