johanvz1
asked on
VLAN vs VPN
Hi,
What is the difference between VLAN and VPN?.
Rgds,
Johan
What is the difference between VLAN and VPN?.
Rgds,
Johan
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
So that does mean if I have a router and I split half the ports for one vlan and the other half for another vlan that it is like 2 completely different networks ie Different subnets and wont be able to access each other?. And what is a DMZ VLAN?.
two completely different networks, which you can configure to connect to each other by routing and policy rules.
DMZ stands for Demilitarized Zone, and is a firewall term.
http://en.wikipedia.org/wiki/Demilitarized_zone_%28computing%29
DMZ stands for Demilitarized Zone, and is a firewall term.
http://en.wikipedia.org/wiki/Demilitarized_zone_%28computing%29
VLAN belong to the layer2 while VPN belong to the layer3. They have 2 different goals.
VLANs may be defined at the switch level, not router. The router will be used only for inter-VLAN communication ruels when required. VLAN is a way to logically group hosts that would need to be on a same physical broadcast domain. That way a computer in accounting dept may be transfered to the ingeniering team within 1 minute without any cabling change.
Subneting with a router is just another way to do the same thing at a different level. The thing is that VLAN will work faster and give more flexibility. If you have a router with VLAN capabilities, for each physical interface you may create multiple logical interfaces assigned to a specific VLAN with their own subnet, IP and mask.
For the VPN, Whermans gave you a good description! In clear VPN has nothing to do with VLANs.
VLANs may be defined at the switch level, not router. The router will be used only for inter-VLAN communication ruels when required. VLAN is a way to logically group hosts that would need to be on a same physical broadcast domain. That way a computer in accounting dept may be transfered to the ingeniering team within 1 minute without any cabling change.
Subneting with a router is just another way to do the same thing at a different level. The thing is that VLAN will work faster and give more flexibility. If you have a router with VLAN capabilities, for each physical interface you may create multiple logical interfaces assigned to a specific VLAN with their own subnet, IP and mask.
For the VPN, Whermans gave you a good description! In clear VPN has nothing to do with VLANs.
VPN is a DIRECT connect from one system to the other, using the internet, but 1-1 specific computer to computer. Think of it like a long ethernet cable, two computers use the internet to connect as if they were in the same building, usually for file transfer, etc.
A VLAN is kind of the opposite, it is a way to connect many computers, spread all across the planet, into a "local" area network where they can collaborate on the same file sharing like VPN, but it is across a whole range of computers spread across the globe.
So in terms of connections, the VPN is one-to-one, whereas the VLAN is many to many -- both use the internet.
A VLAN is kind of the opposite, it is a way to connect many computers, spread all across the planet, into a "local" area network where they can collaborate on the same file sharing like VPN, but it is across a whole range of computers spread across the globe.
So in terms of connections, the VPN is one-to-one, whereas the VLAN is many to many -- both use the internet.
Sorry, scratchyboy you are wrong about VPN and VLAN
VPN have two modes: "Transport mode" (as described scratchyboy`s post) and "Tunnel mode". Tunnel mode is used to link two local network (composed of multiple hosts) over internet.
VLAN, as i said i previous my post work at layer2, then it work on local network ONLY!! VLAN tagging is applied to the frames (layer2), not to the packets (layer3). Then VLAN tags are removed before the packet leave the subnet. The packets are encapsulated in a new frame each time it traverse a new subnet.
VPN have two modes: "Transport mode" (as described scratchyboy`s post) and "Tunnel mode". Tunnel mode is used to link two local network (composed of multiple hosts) over internet.
VLAN, as i said i previous my post work at layer2, then it work on local network ONLY!! VLAN tagging is applied to the frames (layer2), not to the packets (layer3). Then VLAN tags are removed before the packet leave the subnet. The packets are encapsulated in a new frame each time it traverse a new subnet.
http://en.wikipedia.org/wiki/Vlan
http://en.wikipedia.org/wiki/Vpn