10-18-2022 11:18 PM
I mean, what could be a practical case of using this vlan limits
Solved! Go to Solution.
10-19-2022 07:24 AM
To expand a bit on what @Kasun Bandara described . . .
"saving bandwidth"
Blocking a VLAN, on a trunk, precludes broadcasts, unknown destination (switch) port unicast and unknown destination (switch) port multicast traffic from being sent across the trunk link.
"improve security"
If a VLANs traffic is not sent across the trunk, device on other side of the trunk, and all additional devices downstream do not have any way to tap into that VLAN traffic. I.e. it's not physically present to access in any way.
"increase performance of network"
If trunk link and/or downstream device never physical "see" the excluded VLAN traffic, they never have to expend resources to process that traffic nor will that traffic contend/compete for resources. Example of the former, receiving switch that doesn't have a need for the VLAN traffic to it, doesn't need to expend resources even dropping the undesired traffic. Example of the latter, bandwidth on trunk link not used by excluded VLAN traffic available to other VLAN traffic.
10-18-2022 11:42 PM
saving bandwidth, improve security, increase performance of network
10-19-2022 07:24 AM
To expand a bit on what @Kasun Bandara described . . .
"saving bandwidth"
Blocking a VLAN, on a trunk, precludes broadcasts, unknown destination (switch) port unicast and unknown destination (switch) port multicast traffic from being sent across the trunk link.
"improve security"
If a VLANs traffic is not sent across the trunk, device on other side of the trunk, and all additional devices downstream do not have any way to tap into that VLAN traffic. I.e. it's not physically present to access in any way.
"increase performance of network"
If trunk link and/or downstream device never physical "see" the excluded VLAN traffic, they never have to expend resources to process that traffic nor will that traffic contend/compete for resources. Example of the former, receiving switch that doesn't have a need for the VLAN traffic to it, doesn't need to expend resources even dropping the undesired traffic. Example of the latter, bandwidth on trunk link not used by excluded VLAN traffic available to other VLAN traffic.
10-20-2022 07:28 AM
thank you all for the great explanation
10-19-2022 07:31 AM
...and in addition to what the above mentioned you don't have to run spanning-tree for a VLAN that doesn't exist on that part of the network. And since STP runs on a per VLAN instance (unless you're using MST) if you limit 20 VLANs from a trunk port you effectively stop 20 spanning-tree instances from running on that part of the network (this can be coupled with increased BW). Just trying to throw figures at the statements.
-David
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide