RB250GS
One of the latest Mikrotik products RB250GS is included in a special switch that can implement VLANs on each port. And perhaps the smallest and cheapest manageable switches ever made. In addition to making your network more well organized this small switch may be a means of saving you to recognize and implement VLANs in your network.
Basic VLAN implementation uses RB250GS
In the chart below is a chart for example implememtasi VLAN networks that can be done by proxy and router products must be integrated with switches mikrotik RB250GS.
Internet Line will go into your router via the interface ether1 mikrotik and will be distributed back to local networks via Interface ether2.
In ether2 in the router there are 2 VLAN that is VLAN2 (to symbolize the network segment 1) and VLAN3 (to symbolize the network segment 2). Both VLAN information will be forwarded to the switch by connecting ether2 RB250GS from router to ether1-Switch.
In the switch network segment RB250GS 1 and network 2 will be distributed to different interfaces, namely a distribution network to ether2-Switch while the network segment 2 will be distributed to Ether3-Switch.
With this configuration, all whatever device tekoneksi to ether2-Switch (PC, printer) will have a different subnet with perangakat (Server, VoIP phones, IP Cam) connected to Ether3-Switch.
All devices connected at both ports must use this switch in the router first routing to communicate with each other.
One of the latest Mikrotik products RB250GS is included in a special switch that can implement VLANs on each port. And perhaps the smallest and cheapest manageable switches ever made. In addition to making your network more well organized this small switch may be a means of saving you to recognize and implement VLANs in your network.
Basic VLAN implementation uses RB250GS
In the chart below is a chart for example implememtasi VLAN networks that can be done by proxy and router products must be integrated with switches mikrotik RB250GS.
Internet Line will go into your router via the interface ether1 mikrotik and will be distributed back to local networks via Interface ether2.
In ether2 in the router there are 2 VLAN that is VLAN2 (to symbolize the network segment 1) and VLAN3 (to symbolize the network segment 2). Both VLAN information will be forwarded to the switch by connecting ether2 RB250GS from router to ether1-Switch.
In the switch network segment RB250GS 1 and network 2 will be distributed to different interfaces, namely a distribution network to ether2-Switch while the network segment 2 will be distributed to Ether3-Switch.
With this configuration, all whatever device tekoneksi to ether2-Switch (PC, printer) will have a different subnet with perangakat (Server, VoIP phones, IP Cam) connected to Ether3-Switch.
All devices connected at both ports must use this switch in the router first routing to communicate with each other.
About Trunk Link
Trunk is a communication link between the switch with the switch or it could be between Switch Router, which brings information on multiple VLANs (VLAN ID), the different between the two devices. On the router will take across ether2 VLAN2 information (VLAN ID = 2) and VLAN3 (VLAN ID = 3) to ether1-Switch.
In the two pictures capture the above is an example of making the router Trunk Interface (Interface master ether2).
IP Address that different segments can be installed on both VLAN interfaces.
RB250GS Config
The next step is to configure the Switch manageable RB250GS, configuration for RB250GS done using a Web browser and use the username = admin password = [blank].
Recommended for the first step is to change the default ip in ip switch from 192.168.88.1 to another to avoid conflict with the default IP router.
Table vlan
The next step is to register the VLAN ID that will be distributed to the switch. Port1-Switch will act as a trunk port so Vlan2 and Vlan3 will be forwarded on this port. While on Port2-Switch will only forward vlan 2 and Port3-Switch will only forward vlan 3.
Illustration above dalah example config to Create VLAN table in RB250GS.
At manageable switches known existence and egress filtering Ingress filtering to regulate how the switch treats the traffic coming and leaving the port.
Ingress filtering is the policy of the switches to manage traffic coming, while the egress filter to regulate the traffic coming out of that port.
In the illustration above shows the Ingress port on the switch RB250GS on port 1,2 and 3 will be treated the forward policy vlan (VLAN Mode = Enabled), adapted to the configuration on the VLAN table.
In setting policy egress filter will show the function of the port itself. Examples on-Switch Port1 because it acts as a Trunk policy used is "add if missing", while at Port2 and Port3-Switch will act as an Access port it will use the policy "always strip".
The way it works is as follows:
- Traffic coming from Port1-Switch is the traffic that has a vlan header and VLAN ID to be received and forwarded the VLAN with ID 2 and 3 (according to the VLAN table).
- We take the example when there is traffic from the router with vlan ID = 2 then will be forwarded to Port2-Switch (vlan appropriate table). And when the traffic leaving the port2-switch, vlan header will be removed (egress policy on port2-switch that is "always strip").
- At the traffic behind the different treatment or traffic coming back from port2-Switch to the router it will be forwarded to the port1-switch, and will be added in accordance with the default header vlan vlan id in port2-switch at the time of the traffic leaving the port1-swith (egress port policy add if missing).
Combination with other manageable Switch
There are certain circumstances where you have implemented VLANs on your network, and the coincidence is already has few vlan in your manageable switch. So if you want to merge or combine the existing switch with a manageable switch RB250GS, the configuration in RB250GS not be much different.
The key is on vlan ID that already exists should still be declared in the vlan table RB250GS, and trunk ports still need to be made in one of the ports. Trunk port will be the bridge between manageable Swich your own with this RB250GS.
In the chart above, is an example chart pengguaan RB250GS combined with manageable switches to another.
Trunk ports must be made in manageable switch that is to connect the router to the switch manageable and one trunk port for connecting the switch to switch RB250GS manageable.
Link: mikrotik
No comments:
Post a Comment