Configuring VLAN Trunking

Unassigned switch ports on SonicOS can function as VLAN trunk ports. You can enable or disable VLANs on the trunk ports, allowing the existing VLANs on SonicOS to be bridged to respective VLANs on another switch connected via the trunk port. SonicOS support 802.1Q encapsulation on the trunk ports. A maximum of 32 VLANs can be enabled on each trunk port.

The VLAN trunking feature provides the following functions:

•	Change VLAN ID’s of existing PortShield groups

•	Add/delete VLAN trunk ports

•	Enable/disable customer VLAN IDs on the trunk ports

The allowed VLAN ID range is 1-4094. Some VLAN IDs are reserved for PortShield use. The reserved range is displayed in the SonicOS management interface. You can mark certain PortShield groups as “Trunked”. Once the PortShield group is dismantled, the associated VLAN is automatically disabled on the trunk ports.

VLANs can exist locally in the form of PortShield groups or can be totally remote VLANs. You can change the VLAN ID of PortShield groups on SonicOS. This allows easy integration with existing VLAN numbering.

SonicOS does not allow changing port VLAN membership in an ad-hoc manner. VLAN membership of a port must be configured via PortShield configuration in the SonicOS management interface. For more information about configuring PortShield groups, see Network > PortShield Groups .

A virtual interface (called the VLAN Trunk Interface) is automatically created for remote VLANs. When the same remote VLAN is enabled on another trunk port, no new interface is created. All packets with the same VLAN tag ingressing on different trunk ports are handled by the same virtual interface. This is a key difference between VLAN sub-interfaces and VLAN trunk interfaces.

The Name column on the Network > Interfaces page displays the VLAN Trunk Interfaces for the VLAN trunks on which VLAN IDs 150 and 332 are enabled.

You can enable any VLAN, local or remote, on a VLAN trunk to allow bridging to two respective VLANs on another switch. For example, local VLAN 0345 can be enabled on the VLAN trunk for port X2, which also has two remote VLANs enabled on it.

The VLAN Table on the Switching > VLAN Trunking page displays the trunk port, X2, as a member of local VLAN 345 after the VLAN is enabled on the VLAN trunk.

VLAN trunking interoperates with Link Aggregation and Port Mirroring features. A VLAN trunk port can be mirrored, but cannot act as a mirror port itself. You cannot enable Static port security on the VLAN trunk port.

Ports configured as VLAN trunks cannot be used for any other function and are reserved for use in Layer 2 only. For example, you cannot configure an IP Address for the trunk ports.

When a Trunk VLAN interface has been configured on a particular trunk port, that trunk port cannot be deleted until the VLAN interface is removed, even though the VLAN is enabled on multiple trunk ports. This is an implementation limitation and will be addressed in a future release.

Topics:

•	Editing VLANs

•	Adding a VLAN Trunk Port

•	Deleting VLAN Trunk Ports

•	Enabling a VLAN on a Trunk Port

Editing VLANs

To edit a VLAN, perform the following steps:

1	On the Switching > VLAN Trunking page, click the Configure icon in the VLAN Table row for the VLAN ID you want to edit.

2	In the Edit VLAN for PortShield window, do one of the following:

•	Type a different VLAN ID into the VLAN ID field. You can enter any VLAN ID except the original system-specified VLAN ID or any others in the Reserved VLAN IDs.

•	Use the VLAN ID number in the VLAN ID field, which matches the one for which you clicked the Configure icon.

3	To enable trunking for this VLAN, select the Trunked checkbox. To disable trunking for this VLAN, clear the checkbox.

4

Click OK.

Adding a VLAN Trunk Port

To add a VLAN trunk port, perform the following steps:

1	On the Switching > VLAN Trunking page under VLAN Trunks, click the Add button.

2	In the Add VLAN Truck Port window, select the port to add from the Trunk Port drop-down menu.

3

Click OK.

Deleting VLAN Trunk Ports

To delete one or more VLAN trunk ports, perform the following steps:

1	On the Switching > VLAN Trunking page under VLAN Trunks, select one or more checkboxes for the VLAN trunk ports you want to delete.

2	Click the Delete button.

3	Click OK in the confirmation dialog box.

Enabling a VLAN on a Trunk Port

To enable a custom VLAN ID on a specific trunk port:

1	On the Switching > VLAN Trunking page under VLAN Trunks, click the Enable VLAN button.

2	In the Enable VLAN window, select a trunked port from the Trunked Port drop-down list. This is the port that you want to use to trunk the VLAN ID indicated in the next field.

3	In the VLAN ID field, type in the VLAN ID to be trunked. This can be a VLAN ID on another switch.

4

Click OK.