Solved

VLANS with cisco 2900 Switches

Posted on 2001-08-03
9
268 Views
Last Modified: 2010-04-17
Where can I find some information about this? And also is there a way to set each port on a switch as its own VLan?

Thanks
0
Comment
Question by:defore
9 Comments
 
LVL 11

Expert Comment

by:geoffryn
Comment Utility
This should get you started.  If you set a different VLAN on each port of the switch, you are going to have to have a router off of every port as well.  What are you really trying to accomplish?



http://www.cisco.com/univercd/cc/td/doc/product/lan/c2900xl/29_35wc/sc/swgvlans.htm
0
 
LVL 3

Author Comment

by:defore
Comment Utility
My company owns a couple of hotels, and I'm looking for solutions to give the rooms internet access.
0
 
LVL 11

Expert Comment

by:geoffryn
Comment Utility
Why not stick all the rooms on the same VLAN?  You can isolate the traffic that way.  You create a very complicated routing scenario with individual VLANs per port.
0
 
LVL 3

Author Comment

by:defore
Comment Utility
I don't want the guy in one room to get to a guy in another room. Besides using switches is there any other alternative?
0
Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

 
LVL 1

Expert Comment

by:jbuda
Comment Utility
If it was a girl in the room would you then let the guy get to that room??
just wondering...
jbuda
0
 
LVL 79

Accepted Solution

by:
lrmoore earned 100 total points
Comment Utility
Check out Cisco's new Long Range Ethernet product line
http://www.cisco.com/warp/public/cc/pd/si/casi/ca2900lr/index.shtml

These products were designed and built specifically for Hotels before Cisco bought them out..

0
 

Expert Comment

by:jevansAU99
Comment Utility
i wouldn't worry about people "getting to each other" on a 2900 switch. each port on a L2 switch has its own collision domain, meaning packets and traffic designated for port 0/2 for example will only be sent to that port (after the originating device sends a broadcast to that subnet to find the arp match), so its hard to sniff a switch. if you're that concerned about hotel guests sniffing packets - i don't personally think business men/vacationers are going to sit in their rooms and set up packet sniffers to find out the guy in room 2190's hotmail password is :) - then put a "anti-sniffer" on each segment of the network. VLAN's are designed to segment traffic, similar to what you want, and in theory you could put every single port on a diff. vlan, but i know of no company that has ever done this. Its not efficient, and it really wouldn't make that much difference to a hacker in that if he is good enough to do what you said, then he'll be good enough to catch the packets at the trunked port on the router where all the VLAN's come together to pass through the physical input/output port. thats just my opinion anyway.

also, switches are your best option. the only other option for a LAN is hubs, which are basically, and unsecure switch, in which it is very easy to sniff packets on the local segment.
0
 

Expert Comment

by:mcsecue
Comment Utility
plug the 2900's into a 5505 and use trunking, it will work great, I love VLANS...  www.cisco.com has several tools available on their site to get you started, we call them cook books...  

0
 
LVL 4

Expert Comment

by:jwalsh88
Comment Utility
defore,

lrmoore's solution is really the best one.  The product is specifically designed to do exactly what you want it to.
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

Suggested Solutions

We've been using the Cisco/Linksys RV042 for years as: - an internet Gateway - a site-to-site VPN device - a leased line site-to-site subnet-to-subnet interface (And, here I'm assuming that any RV0xx behaves the same way as an RV042.  So that's …
In the world of WAN, QoS is a pretty important topic for most, if not all, networks. Some WAN technologies have QoS mechanisms built in, but others, such as some L2 WAN's, don't have QoS control in the provider cloud.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now