Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 505
  • Last Modified:

how can vlan be used to seperate wireless and wired traffic?

how can vlan be used to seperate wireless and wired traffic?
2 Solutions
In one device or are you setting up a VLAN in the switch then adding a Wi-Fi Access Point?

A VLAN is normaly setup in a switch.  Let's say VLAN1 and VLAN2 are configured.
All ports assigned to VLAN1 are then logicaly seperated from VLAN2 with no packets allowed between them.  If the switch is capable it can act as a router between the 2 VLANs.  If not, a routing device needs to ba added to get traffic accross the VLANs.  An access point plugged into a VLAn2 port would have to access to VLAN1 without something routing in between (or an improperly plugged in switch).
To add on top of what already has been said; first you need to understand what a vlan is. With all due respect, if you are asking how a vlan is used to seperate 802.11 and 802.3 traffic, you do not know what a vlan is or how it functions. You also have to understand what a Local Area Network is. A Local Area Network (LAN) is a group of hosts that are defined as all devices addressed in the same broadcast domain. Consider a hub with 5 hosts all IP addressed in, all hosts are in the same broadcast domain ( [/24 desingation]); this is LAN1; now consider another 2 hubs with no physical connections to one another (Totally seperate network), each hub having 5 hosts connected: Hub02, 5 hosts, addressed in and hub03 with 5 hosts, addressed in These are 2 seperate networks in 2 different broadcast domains.

Consider a layer 2 switch that has the capability of configuraing VLANs; vlan02 and vlan03; each vlan represents hub02 and hub03 repsectively. A VLAN is a Virtual Local Area Network that is consider a single broadcast domain. If you configure two vlans, VLAN02 and VLAN03, you have two logical broadcast domains that are not able to communciation with each other. Think of the 2 VLANs has the two hubs (Hub02 and hub03). When you configure a switch to allow two different hosts to become members of the VLANs, you assign a port to a specific vlan: Port 1 = VLAN 2 (Cisco: switchport access vlan 2).

In a situation such as yours, you would typically configure 3 VLANS, Vlan10 for Internet, Vlan11 for Wireless, Vlan12 for servers, and Vlan13 for workstations, etc. As already described, you need layer 3 (routing) functionality to route between Vlans. This is typically accomplished utilizing a multilayer switch such as a Cisco 4948 (RSM, RP, etc), or utilizing a router such as a 2800 and configuring the router and switch for trunking to allow the vlans to traverse the trunk. You then setup the interfaces for the specific trunk encapsulation as sub-interfaces and assign them to the vlan.


QlemoC++ DeveloperCommented:
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.

Featured Post

Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now