A virtual local area network (VLAN) is a logical grouping of systems that is not constrained by geographic boundaries. These groupings create a broadcast domain, and function just like a traditional LAN. Systems within the VLAN are not necessarily physically co-located, but do not require a router to connect them. (Routers are used to connect separate VLANs). VLANs are interconnected using system bridging software.
The ME supports VLAN tagging, allowing a 802.1Q-compliant VLAN identifier to be added to the packet before it is sent. VLAN tagging (i.e., whether a VLAN tag is added to the packet on transmit) is enabled per VLAN, on a per interface basis. When a packet is received with a VLAN tag, the packet is accepted if the receive port is an active member of the tagged VLAN.
The ME implements its virtual firewall functionality through the use of VLAN tagging to partition private network segments. For information, see the Oracle Communications WebRTC Session Controller System Administration Guide.
Creates Layer 2 partitions, grouping LAN segments so that they appear to be on the same Layer 2 network. Each VLAN is identified by a VLAN ID; the ID must be unique within portions of the network, depending on the use of the VLAN.
If VRRP is not in use, a VLAN ID must be unique to each physical interface. A physical interface consists of the bottom-level interface (e.g., eth0) and all interfaces within a virtual firewall hosted on that bottom-level interface. VLAN IDs can overlap on different physical interfaces, however. For example, you could have VLAN 20 assigned on both interface eth0 and eth1.
If a cluster is configured with a VRRP interface, VLANs on the cluster must be unique among all interfaces on the cluster. (This includes the VLANs that you configure in a virtual firewall on the cluster.)
Enter a value between 2 and 4095. The ME creates a new VLAN with the specified number as an ID or opens for editing an existing VLAN.
On a public IP interface:
config box interface ethX vlan integer config cluster box integer interface ethX vlan integer config cluster vrrp vinterface vxID vlan integer
admin: Enables or disables VLAN services on the specified Ethernet interface.
Default: enabled
Values: enabled | disabled
Example: set admin disabled
arp: Enables or disables Address Resolution Protocol (ARP) services on this VLAN interface. ARP is the Internet protocol that maps IP addresses to corresponding Ethernet addresses.
Default: enabled
Values: enabled | disabled
Example: set arp disabled