Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
372
Views
0
Helpful
5
Replies

Newbie ? on CM and VLANs..please be nice

angel-moon
Level 3
Level 3

‎04-03-2005 08:00 PM - edited ‎03-13-2019 08:36 AM

Hello,

well I have to start somewhere so please forgive me if this question seems elementary.

I have seen mention of setting up VLANs for the IP phones and Call Manager servers where nothing else shares the VLAN. Could someone tell me why you would want to do this and what effect does that have when the computers are plugged into the phones which then are off in thier own seperate VLAN.

Thanks for any input and remember...you didn't always know it all, you were a newbie once just like me! :)

Labels:
0 Helpful
5 Replies 5

CCampbell_2
Level 1
Level 1

‎04-03-2005 08:15 PM

Hello,

What actually happens is an 802.1q trunk is created between the phone and the switch. A trunk allows more than one VLAN to be passed over a single connection. The phone listens to traffic in the voice VLAN and passes through the PC vlan to the port on the back of the phone that the PC plugs into.

0 Helpful

angel-moon
Level 3
Level 3
In response to CCampbell_2

‎04-04-2005 02:39 PM

OK...That explains the what but what about the why?

0 Helpful

Thomas.ott
Level 1
Level 1
In response to angel-moon

‎04-04-2005 03:23 PM

The Voice Vlans allow you to put QoS on the voice traffic so it gets delivery priority over data traffic. You also get flexibility to use your switchports for phones or PCs or to "daisy chain" by pluging in a PC to the PC port on the IP Phone. In addition to this there are also some security benefits. I suggest you read the Cisco Safe white paper IP Telephony Security in Depth.

0 Helpful

CCampbell_2
Level 1
Level 1
In response to angel-moon

‎04-04-2005 03:25 PM

Because we can. :) Seriously though, it's just a best practice kind of thing.

1. If we could limit the traffic our phones see and in the case of broadcasts, have to deal with, why shouldn't we, especially if it's easy enough to do.

In the PC/data world, broadcasts aren't really a big deal these days with the abundant amount of network bandwidth and PC processing power that we have, but my Cisco 7970 phone can barely keep up with displaying the Corporate Directory.

2. It makes it easy to apply ACLs to the VLAN interface for the voice environment should we choose to do so.

These are a couple of reasons, maybe someone else will chime in with a few. Basically, it just makes more sense to do it, than to not do it.

0 Helpful

droberts
Level 1
Level 1

‎04-04-2005 04:32 PM

The main reason is security. Some people put ACL's or firewalls between the two VLAN's to restrict worm outbreaks.

Even without using voice vlans, QoS is enabled within the phone itself. Without any configuration on the switchport, (I believe) packets from the PC are tagged with the default DSCP/CoS while voice RTP (and perhaps SCCP) are tagged higher.

0 Helpful
Customers Also Viewed These Support Documents