Ingress Filtering - Enterasys VH-2402-L3 Management Manual

Vertical horizon fast ethernet switch

Hide thumbs Also See for VH-2402-L3:

User manual (51 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

page of 201

/ 201
Contents
Table of Contents
Bookmarks

Table of Contents

can then be used by other 802.1Q compliant devices on the

network to make packet forwarding decisions.

Ports with untagging enabled will strip the 802.1Q tag from

all packets that flow into and out of those ports. If the packet

doesn't have an 802.1Q VLAN tag, the port will not alter the

packet. Thus, all packets received by and forwarded by an

untagging port will have no 802.1Q VLAN information.

(Remember that the PVID is only used internally within the

switch). Untagging is used to send packets from an 802.1Q-

compliant network device to a non-compliant network device.

Ingress Filtering

A port on a switch where packets are flowing into the switch

and VLAN decisions must be made is referred to as an

ingress port. If ingress filtering is enabled for a port, the

switch will examine the VLAN information in the packet

header (if present) and decide whether or not to forward the

packet.

If the packet is tagged with VLAN information, the ingress

port will first determine if the ingress port itself is a member

of the tagged VLAN. If it is not, the packet will be dropped.

If the ingress port is a member of the 802.1Q VLAN, the

switch then determines if the destination port is a member of

the 802.1Q VLAN. If it is not, the packet is dropped. If the

destination port is a member of the 802.1Q VLAN, the

packet is forwarded and the destination port transmits it to its

attached network segment.

If the packet is not tagged with VLAN information, the

ingress port will tag the packet with its own PVID as a VID (if

the port is a tagging port). The switch then determines if the

destination port is a member of the same VLAN (has the

same VID) as the ingress port. If it does not, the packet is

dropped. If it has the same VID, the packet is forwarded and

the destination port transmits it on its attached network

segment.

This process is referred to as ingress filtering and is used to

conserve bandwidth within the switch by dropping packets

that are not on the same VLAN as the ingress port at the

134 VH-2402-L3 Management Guide

9033691-01

Table of Contents

Ingress Filtering - Enterasys VH-2402-L3 Management Manual

Ingress Filtering

Related Manuals for Enterasys VH-2402-L3

Related Content for Enterasys VH-2402-L3

Table of Contents