Friday, August 17, 2018

VLAN Configuration Guidelines on Layer 3 Switch

As networks grow larger and larger, scalability becomes an issue. Every device in the network needs to send broadcasts to communicate in a broadcast domain . As more devices are added to the broadcast domain, more broadcasts start to saturate the network. In this case, VLAN (Virtual LAN) is needed to separate broadcast domains virtually, eliminating the need to create completely separate hardware LANs to overcome this large-broadcast-domain issue. In this post, we’re gonna expound the motivators to deploy VLAN and how to set up VLAN configuration step by step.
VLAN Configuration

Motivators to Implement VLAN

VLAN is a way of creating multiple virtual switches inside one physical data switch. There are a lot of reasons to implement VLAN, some of which are listed as follows.
  • Link Utilization: Link utilization is another big reason to use VLANs. Spanning tree by function builds a single path through your layer 2 network to prevent loops. If you have multiple redundant links to your aggregating devices then some of these links will go unused. To get around this you can build multiple STP topology with different VLANs.
  • Service Separation: If you have IP security cameras, IP Phones, and Desktops all connecting into the same switch it might be easier to separate these services out into their own subnet. This would also allow you to apply QoS markings to these services based on VLAN instead of some higher layer service. You can also apply ACLs on the device performing Layer 3 routing to prevent communication between VLANs that might not be desired.
  • Subnet Size: If a single site becomes too large you can break that site down into different VLANs which will reduce the number of hosts that see need to process each broadcast.

VLAN Configuration Guidelines on Layer 3 Switch

Configuring two or more VLANs to communicate with each other requires the use of either a VLAN-aware router or a Layer 3 switch. VLAN configuration can be accomplished either in CLI interface or in Web interface. The following video is a VLAN configuration example on FS S5800/S5850 10 gigabit switch.
Configure VLAN in CLI (command-line interface)
Here we take FS S5850-32S2Q Layer 3 switch as an example to configure VLAN. To create a VLAN via CLI interface, SecureCRT software is required to enter CLI interface, then perform the VLAN configuration command in the chart below:
Procedure Command Purpose
Step 1 Set the parameters of COM2 port Quick connect on startup
Step 2 #enter Enter CLI interface
Step 3 #configure terminal Enter the global configure mode
Step 4 #vlan database Enter VLAN configure mode
Step 5 #show vlan all Check the details of all VLANs on the switch
Configure VLAN in Web Interface
Configuring VLAN in Web Interface is quite simple. Just perform the following two steps and you would see the basic info of the VLAN that is created.
Step 1: Log in the Web user interface using the account and password
Step 2: Find the service management and create a new VLAN, and set its ID as 10 or 20.
Note: Ports configured to use VLAN 10 act as if they're connected to the exact same switch. Ports in VLAN 20 can not directly talk to ports in VLAN 10. They must be routed between the two or have a link that bridges the two VLANs

Summary

VLAN deployments make it easy for network engineers to partition a single switched network to match the functional and security requirements of their systems without having to run new cables or make major changes in their current network infrastructure. The proper VLAN configuration on Layer 3 switches ensures reliable and secure data link access to all hosts connected to switch ports. Knowing more about VLAN configuration would allow you to use them when you need them and to use them correctly when you do.
Source: http://www.fiber-optic-tutorial.com/vlan-configuration-guidelines-layer-3-switch.html

Monday, August 6, 2018

LAN vs WAN vs MAN: Which One to Choose?

Network is essential for establishing communications among devices such as computers, routers, or fiber switches to operate over the area they cover. LAN ((Local Area Network), WAN (Wide Area Network) and MAN (Metropolitan Area Network) are the three most prevalent types of networks that are utilized today. There are some similarities and differences between them. LAN vs WAN vs MAN, which one should you choose?
LAN vs WAN vs MAN

What Is LAN?

LAN is an interconnection of a group of related networking devices within a small geographical area where the distance between these devices is small. Some of the LANs also cover the networks in office , school, and home. Most of the LANs are built for the purpose of sharing vital resources such as printers and exchanging files.
LAN is also widely used to provide services such as sharing computer applications, gaming and accessing the internet. This type of network is under the control of one administrator who is in charge of the configurations and settings and other devices connected through Ethernet cables and wireless routers.

What Is WAN?

WAN is a kind of network connection between multiple networking devices over a large geographical area. The connection can be between different cities or even countries. A WAN network can be a collection of small networks that have been combined, or it can be as a result of various private business entities. One good example of WAN is the internet, since it connects computers from different corners of the world.
The WAN network is too complex to be managed by private administrators. Therefore, WANs usually have a public ownership, where network devices in this network can be connected either by cables or through a wireless connection.

What Is MAN?

As the name suggests, MAN is a type of network that connects network devices within a specific geographical area. MAN lies in between LAN and WAN. The area covered by MAN network is larger than that in LAN but smaller than that in WAN. MANs are mostly used to provide fast connections to cities and large institutions.
MAN experiences comparatively high speeds to facilitate fast sharing of resources such as files within a city. One main disadvantage of the MAN is the high cost. The technology deployed for MAN network is pricier than that of LAN and WAN.

Key Comparison Between LAN vs WAN vs MAN

LAN vs WAN vs MAN, there are similarities and differences between them as listed in the chart below.
ParameterLANMANWAN
Ownership of NetworkPrivatePrivate or PublicPrivate or Public
Design and MaintenanceEasyDifficultDifficult
Propagation DelayShortModerateLong
SpeedHighModerateLow
CongestionLessMoreMore
ApplicationCollege, School, HospitalSmall towns, CityCountry/Continent

Conclusion

Generally speaking, there are many advantages of LAN over MAN and WAN. LAN provides excellent reliability, high data transmission rate, and they can easily be managed. However, LAN cannot cover cities or towns and for that MAN is needed, which can connect city or a group of cities together. WAN is not restricted to a geographical location, although it might be confined within the bounds of a state or country. No matter which kind of network you choose, the routers or network switches you choose should be eligible to better satisfy your demand for network architecture. FS provides high performance gigabit PoE switch10 gigabit switch, 40 gigabit switch,etc. If you have any requirement, you can kindly visit www.fs.com.

Friday, July 20, 2018

VPLS vs MPLS: What's the Difference?

The Internet has undergone tremendous changes and broken the barriers from the impossibilities to the possibilities. To seamlessly and securely get access to the Internet or Web is what we’re seeking along the way. VPLS and MPLS are two competing technologies to direct network traffic, letting you have speedy data transfer and communication. What is a VPLS or MPLS network? What’s the difference between VPLS vs MPLS? We’re gonna to elaborate them one by one.

What Is MPLS?

MPLS (Multiprotocol Label Switching) is a type of communication that enables a service provider to provision cost effective and flexible “Virtual Private Networks” across a shared core network infrastructure. MPLS is used to send data and network traffic along the most efficient routes, which may be predetermined and are communicated using labels. Packets are carried on predetermined routes along point-to-point connections through label switch routers (LSRs) until they arrive at their destination. In MPLS network, the MPLS switch (eg. FS S5800-48F4S SFP switch) transfers data by popping off its label and sending the packet to the next switch label in the sequence. MPLS perfectly integrates the performance and traffic management capabilities of Layer 2 switching with the scalability and flexibility of Layer 3 routing.
MPLS Network

What Is VPLS?

VPLS (Virtual Private LAN Service) is a service that uses MPLS and VPN (Virtual Private Networking) to securely and seamlessly connect multiple LANs over the Internet, making them appear as if they were all on the same LAN. VPLS enables a service provider to extend a Layer 2 network across geographically dispersed sites using a shared core network infrastructure. VPLS works by creating a virtualized Ethernet switch at the provider’s edge to link remote sites. VPLS happens at Layer 2, and the carrier builds out the network, but the customer can do their own routing if they wish. This approach is ideal for corporations that have multiple data center footprints and office or remote locations that require low-latency connections between sites.
VPLS Network

VPLS vs MPLS: Factors to Consider When Choosing Them

When deciding over VPLS vs MPLS for connectivity between remote locations, there are multiple factors to consider. We’ll look into them one by one.
Switching Layer
One of the main benefits of VPLS over MPLS are the levels of security offered. As aforementioned, VPLS extend a Layer 2 network across geographically dispersed sites using a shared core network infrastructure. While MPLS perfectly integrates the performance and traffic management capabilities of Layer 2 switching with the scalability and flexibility of Layer 3 routing. VPLS does not share layer 3 routing tables with the service provider, while MPLS may do so, means that VPLS is generally the better solution for highly-sensitive data.
Network Size & Traffic
Generally, MPLS can deliver a wider type of network traffic than VPLS. VPLS is typically used for fewer locations that need very high speeds, very simple networks with high performance and high security. Thus, if you desire to connect entities such as data centers across the long-haul network backbone, VPLS is preferable as an Ethernet-based connection strategy. If a customer had hundreds of locations across the country who needs voice, data and video traffic to be carried to all locations, MPLS might make more sense because it is protocol-agnostic and can handle multiple types of traffic. MPLS may be an even clearer choice where large numbers of branches are involved.
Levels of Scalability
Another key difference between MPLS and VPLS is the inherent level of scalability. Due to the manner in which these two technologies interact with your network, MPLS is considered to be far more scalable. Using a backbone of MPLS for maximum network access and scalability, together with VPLS connections for more sensitive data often represents the best possible compromise, you would make the most of both protocols and substantially increase network efficiency.

Conclusion

Although MPLS and VPLS are different technologies, they are not mutually exclusive. Many businesses deploy both MPLS and VPLS protocols within their network in order to get the best of both worlds. FS provides gigabit ethernet switch and 10gbe switch which support both MPLS and VPLS. All these switches comes with rich L2/L3 business processing ability for core switching networks.

Sunday, July 15, 2018

VPN vs VLAN: What's the Difference?

As the popularity of the Internet has grown, many businesses are seeking for approaches to extend their own networks. First came Intranets, which are sites designed for use only by company employees. Nowadays, many of them are creating their own VPN (Virtual Private Network) or VLAN (Virtual Local Area Network) to accommodate the needs of remote employees and distant offices. What is a VPN and what is VLAN? This post will explain these two terms and the differences between VPN vs VLAN.

What Is a VPN?

A VPN is a virtual private network that utilizes a public network (usually the Internet) to connect remote sites or users together. A typical VPN network has a main local area network (LAN) at the corporate headquarters of a company, other LANs at remote offices or facilities, and individual users that connect from out in the field. Instead of using a dedicated leased line, a VPN uses "virtual" connections routed over a public or shared infrastructure such as the Internet or service provider backbone network. Therefore subscribers who are physically isolated from the main LAN can get access to the company's private network and remotely.

VPN Applicable Network Scenario
Here is a typical example of using the VPN network. As illustrated in the figure below, Network “A” sites have established a VPN (depicted by the red lines) across the service provider’s backbone network, where Network “B” is completely unaware of it’s existence. Both Network “A” and Network “B” can harmoniously coexist on the same backbone infrastructure without interrupting each other.
VPN Network

What Is a VLAN–the Subcategory of VPN

A VLAN is a group of networking devices configured to communicate on one or more LANs as if they were attached to the same wire, but actually they are located on a number of different LAN segments. VLAN networks are based on logical instead of physical connections with great flexibility. A VLAN network defines broadcast domains in a Layer 2 network. A broadcast domain is the set of all devices performed to receive broadcast frames originating from any other device within the set. Broadcast domains are usually bounded by routers since routers do not forward broadcast frames.

VLAN Applicable Network Scenario
As shown in the figure below, Layer 2 network switches are used to create multiple broadcast domains based on the configuration of these switches. Each broadcast domain is just like a distinct virtual bridge within a switch. By adding a Layer 3 router, it possible to send traffic between VLANs while still containing broadcast traffic within VLAN boundaries. The router uses IP subnets to deliver traffic between VLANs. Each VLAN has a distinct IP subnet, and there is a one-to-one correspondence of VLAN and IP subnet boundaries.
VLAN Network

VPN vs VLAN: How They Differ From Each Other?

VPN vs VLAN, they are two different concepts but related to each other. A VLAN is a subcategory of VPN, but they are designed for different hierarchies. VPN constructs range from Layer 1 to Layer 3, while VLAN is purely a layer 2 construct. A VLAN is used to group multiple computers that are not usually within the same geographical areas into the same broadcast domain. A VLAN can also segregate computers in a larger local network into smaller networks for each office or department and shielding the data so that they do not act as if they are on same network even if they are in the same switch. However, a VPN is more often related to remote access to a company’s network resources. It’s a method of creating a smaller sub network on top of an existing bigger network compared with VLAN.

Summary

No matter which one you choose over VPN vs VLAN, the foremost thing is to get reliable network switches or routers implemented in VPN or VLAN networks. FS can always fulfill your requirements by offering gigabit ethernet switch, 10gbe switch, 40gbe switches, as well as new gigabit VPN routers. They’re with powerful data-handling capacity and high compatibility for applications in data centers and enterprises.

Friday, July 6, 2018

Data Switch vs Hub in a Home Network

Data switches and hubs are common networking devices used to regenerate degraded signals and split a signal into multiple signals. They are handy for splitting up an internet connection to your home network. But do you know how they work in a home network? If they both accomplish the same thing, what’s the difference between a data switch vs hub?

What Is a Data Switch?

A data switch is charged with the job of connecting smaller segments of a single network into a connected whole. It transfers data across a network segment using MAC addresses for reference. Data switches are extensively used in Ethernet local area networks. A data switch operates on the Data Link Layer of the OSI (Open Systems Interconnection) model. This means that data switches are fairly smarter than hubs, as they can route data on a dynamic level. If information is destined for a certain computer, the data switch will only send the data to this computer. This addresses our collision problem as switches use what is called micro-segmentation, which will be elaborated later in this article.

What Is a Hub?

Hub is a network device which controls number of switches and router for the whole network. A hub is a “dumb” device in that it broadcasts whatever it hears on the input port to all the output ports. The good thing about “dumb” devices is that they don’t need much configuration or maintenance. But this leads to collisions between data packets and a general degrading of network quality. If you have a hub set up between your router and the rest of your network, you’re setting yourself up for a huge headache. A hub looks just like a switch, but works differently on the inside. You connect devices to a hub using Ethernet cable and any signal sent from a device to the hub is simply repeated out on all other ports connected to the hub.

Data Switch vs Hub in a Home Network

Data switch vs hub? How do they differ from each other? Hubs are considered Layer 1 (Physical Layer) devices whereas data switches are put into Layer 2 (Data Link Layer). This is where hubs and switches mainly differ. The Data Link layer of the OSI model deals with MAC addresses and switches look at MAC addresses when they process an incoming frame on a port.
switch vs hub
Moreover, a data switch is much smarter but pricier than a hub. A data switch can actively manage the connections between the input port and the output ports, so you won’t run into the collision problem or any of the other issues that plague hubs. As you can see below, there are multiple collision domains or segments for the switch network. If computer A and computer B sent data to each other at the same time, you would have a collision. Computer A and computer C or D, however, will not experience a collision in the process. In comparison, for a hub network, there is just one collision domain, which means that if one computer transmits data, it would be interrupted by any of the other computers in the network. Thus, the more devices you connect to the hub, the more collisions there will be in the whole network. The following figure illustrates a data switch vs hub in collision domains.
switch vs hub in collision domain

Conclusion

Data switch vs hub, which one should you choose for a home network? If you purchased the device in question within the last few years, the chance is almost zero that it’s a hub. Historically, switches were expensive and hubs were cheap, but advances in technology have made switches so cheap that they don’t even bother making hubs anymore. Thus, nowadays data switches are higher-performance alternatives to hubs in a home network. FS provides a full set of high performance data switches, including gigabit ethernet switch10gb ethernet switch, 100gbe ethernet switch, etc. If you have any requirement, please kindly visit www.fs.com.

Thursday, June 28, 2018

Do I Need a Gigabit Switch or 10/100Mbps Switch?

Ethernet network speeds have evolved significantly over time and typically range from Ethernet (802.11) at 10Mbps, Fast Ethernet (IEEE 802.3u) at 100Mbps, Gigabit Ethernet (IEEE 802.3-2008) at 1000Mbps and 10 Gigabit Ethernet (IEEE 802.3a) at 10Gbps. Meanwhile, Ethernet switches have also escalated from 10/100Mbps switch to Gigabit switch, 10GbE switch, and even 100GbE switches. The topic came up frequently that “Do I Need a Gigabit Switch or 10/100Mbps Switch?” Gigabit switch vs 10/100Mbps switch, which do I need to satisfy my network speeds requirement? This post will give you the answer.

Gigabit Switch: the Mainstream on Network Switch Market

A Gigabit switch is an Ethernet switch that connects multiple devices, such as computers, servers, or game systems, to a Local Area Network (LAN). Small business and home offices often use Gigabit switches to allow more than one device to share a broadband Internet connection. A gigabit switch operates in the same manner, only at data rates much greater than standard or Fast Ethernet. People can use these switches to quickly transfer data between devices in a network, or to download from the Internet at maximum speeds of 1000Mbps. If a switch says “Gigabit", it really means the same thing as 10/100/1000, because Gigabit switches support all three speed levels and will auto-switch to the appropriate one when something is plugged in. The following is a Gigabit 8 port poe switch with 8 x 10/100/1000Base-T RJ45 Ethernet ports.
8 port poe switch

10/100Mbps Switch: Still Alive and Well for Some Reason

10/100Mbps switch is a Fast Ethernet switch released earlier than Gigabit Ethernet switch. The data speed of 10/100Mbps switch is rated for 10 or 100Mbps. When a network switch says "10/100", it means that each port on the switch can support both 10Mbps and 100Mbps connection speeds, and will usually auto-switch depending on what's plugged into it. Currently, few devices run at 10Mbps, but it is still alive on the market for some reason. Actually, 10/100 is sufficient for internet browsing and Netflix. But if you will be doing more than one thing with your network connection, such as file transfers, or the set-top box, I would recommend you go with the Gigabit switch.
10/100Mbps Switch

Gigabit Switch vs 10/100Mbps Switch: How to Choose?

Network engineers who refresh the edge of their campus LAN encounter a fundamental choice: Stick with 100Mbps Fast Ethernet or upgrade to Gigabit Ethernet (GbE). Vendors will undoubtedly push network engineers toward pricier GbE, but network engineers need to decide for themselves which infrastructure is right for the business. Currently, Gigabit switch is much more popular than Fast Ethernet 10/100Mbps switch. Because gigabit switch used in tandem with a gigabit router will allow you to use your local network at speeds up to ten times greater than 10/100Mbps switch. If either of these component are not gigabit, the entire network will be limited to 10/100 speeds. So, in order to use the maximum amount of speed your network can pump out, you need every single component in your network (including you computers) to be gigabit compliant. In addition, by delivering more bandwidth and more robust management, Gigabit switches are also more energy efficient than 10/100Mbps switches. This offers enterprises the opportunity to lower their power consumption on the network edge.

Conclusion

There’s a multitude of switch options to choose from on the dazzling market. So, before determining the right switch for your network, you’re supposed to have a close look at your current deployment and future needs. But for most cases, we recommend you buy Gigabit Ethernet devices instead of Fast Ethernet devices, even if they cost a little bit more. FS provides a full set of Gigabit switches, including 8 port switch, 24 port switch, 48 port switch, etc. With these high performance Gigabit Ethernet switches, your local network will run faster with better internet speed.

Friday, June 22, 2018

TAP Aggregation Switch: Key to Monitor Network Traffic

For network professionals, Ethernet switches have already been used very commonly in network design. In order to ensure network security and monitor the performance of the standard Ethernet switches, network test access port (TAPs) have emerged as one of the primary sources for data monitoring or network traffic monitoring. What is network TAP or TAP aggregation switch, and how to deploy it for network traffic monitoring? This post will give you the answer.

What Is TAP Aggregation Switch or Network TAP?

A network tap is a hardware device which provides an approach to access the data flowing across a network. It functions by flow copy or aggregation, thus it’s also called TAP aggregation switch. TAP aggregation switch works by designating a device to allow the aggregation of multiple TAPs and to connect to multiple monitoring systems. In this process, all the monitoring devices are linked to specific points in the network fabric that handle the packets that need to be observed. In most cases, a third party TAP aggregation switch monitors the traffic between two points in the network. If the network between point A and B consists of a physical cable, a network TAP or TAP aggregation switch might be the best way to accomplish this monitoring. TAP aggregation switch deployed between point A and B passes all traffic through unimpeded, but it also copies that same data to its monitor port, which could enable a third party to listen.

Deployment Scenario of TAP Aggregation Switch

TAP aggregation switches or network TAPs can be extremely useful in monitoring traffic because they provide direct inline access to data that flows through the network. The following part illustrates the typical applications of TAP aggregation switches in data center and carrier network.
  • Application in Data Center
    As shown in the figure below, user can enable the timestamp and source port label function of TAP devices. The server cluster can access the exact packet process time in each data center layer via source port and timestamp message carried by the packets. From port1, port2, port3, user can distinguish the devices that the streams come from. Through T1, T2 and T3, packets forward latency of each device can be calculated, according to which users can find out the bottleneck during packet forwarding for the further optimization of data center network.
  • TAP Aggregation Switch for Data Center
  • Application in Carrier Network
    TAP aggregation switch can also be used to assist DPI (Deep Packet Inspection) in carrier networks. As illustrated below, TAP aggregation switch is applied to forward flows of carrier at internet access point and sends a mirrored copy of the packet flow to DPI device at the same time. The DPI device is for traffic analysis, once a virus on website or illegal information has been monitored, the flows will be blocked by a five elements table sent from management channel between DPI and TAP.
TAP Aggregation Switch for Carrier Network

FS TAP Aggregation Switches Solution

FS network TAPs or TAP aggregation switches deliver security, visibility and traffic analysis for high density, non-blocking 1G/10/40/100GbE networks at any scale with advanced traffic management capabilities for lossless monitoring of network traffic. They can cost-effectively and losslessly monitor all data center network traffic, while capturing and analyzing only the traffic that is needed. The table below lists FS T5800 and T8050 series TAP aggregation switches.
TAP Aggregation
Key Features
  • Standard 1U 19’’ rack mountable, 240 Gbps switching capability
  • 8x10/100/1000 Base-T Ethernet Ports, 8x1000 Base-X SFP Ports (Combo)
  • 12x10GE SFP+ Ports
  • Dual modular power supply
  • Standard 1U 19’’ rack mountable
  • 4x10GE SFP+ Ports(Combo)
  • 20x40GE QSFP+ Ports
  • 4x100GE QSFP28 Ports
  • Dual modular power supply
  • Standard 1U 19’’ rack mountable
  • 48x10GE SFP+ Ports
  • 2x40GE QSFP+ Ports
  • 4x100GE QSFP28 Ports
  • Dual modular power supply
  • Standard 1U 19’’ rack mountable
  • 48x10GE SFP+ Ports
  • 6x40GE QSFP+ Ports
  • Dual modular power supply
  • Standard 1U 19’’ rack mountable
  • 32x10GE SFP+ Ports
  • 2x40GE QSFP+ Ports
  • Dual modular power supply

Conclusion

TAP aggregation switches are crucial to any network monitoring plan because they offer an uncensored view of all network traffic. With FS TAP aggregation switches, customers can transform opaque data center traffic into comprehensive visibility for security threat detection, service availability monitoring as well as traffic recording and troubleshooting. Apart from TAP aggregation switches, the standard Ethernet switches including Gigabit switches, 10gb switches, 40gb switches and 100gb switches are also available for your choice.