Managing VLANs

This chapter contains the following sections:

About VLANs

A VLAN is a group of devices on one or more LANs that are configured so that they can communicate as if they were attached to the same wire, when they are located on a number of different LAN segments. Because VLANs are based on logical instead of physical connections, they are flexible.

In Cisco UCS Director, you can configure VLANs on the following Cisco network devices:

  • Cisco Nexus 1000 and 1110 Series switches
  • Cisco Nexus 3000 Series switches
  • Cisco Nexus 5000, 5500, and 5672 Series switches
  • Cisco Nexus 6000 Series switches
  • Cisco Nexus 7000 Series switches
  • Cisco Nexus 9300 and 9500 Series switches

Note


For more detailed information about VLANs and configuration guidelines for VLANs, see the Cisco NX-OS Software Configuration Guides.


Creating a VLAN


    Step 1   On the menu bar, choose Physical > Network.
    Step 2   In the Network pane, expand the pod.
    Step 3   Select the network device to be configured.
    Step 4   Click the VLANs tab.
    Step 5   Click Create VLAN.
    Step 6   In the Vlan Parameters dialog box, complete the following fields:
    Name Description

    VLAN ID field

    The VLAN ID within the valid range.

    VLAN Name field

    The VLAN name.

    Copy Running configuration to Startup configuration check box

    Check the check box to copy the running VLAN configuration to the startup configuration.

    Step 7   Click Submit.

    Assigning a VLAN to a User Group


      Step 1   On the menu bar, choose Physical > Network.
      Step 2   In the Network pane, expand the pod.
      Step 3   Select the network device to be configured.
      Step 4   Click the VLANs tab.
      Step 5   Select the VLAN to be assigned to a user group.
      Step 6   Click Assign Group.
      Step 7   In the Select Group dialog box, complete the following fields:
      Name Description

      Assign To Users check box

      Check the check box to assign the VLAN to users in a group.

      Group drop-down list

      Choose the group from the list.

      Label field

      The label for the VLAN that is assigned to a user group.

      Step 8   Click Submit.

      Unassigning a VLAN from a User Group


        Step 1   On the menu bar, choose Physical > Network.
        Step 2   In the Network pane, expand the pod.
        Step 3   Select the network device to be configured.
        Step 4   Click the VLANs tab.
        Step 5   Select the VLAN that you need to unassign from a user group.
        Step 6   Click UnAssign Group.
        Step 7   In the UnAssign VLAN from Group dialog box, complete the following fields:
        Name Description

        VLAN ID field

        The ID of the VLAN that you need to unassign from the group.

        Comment field

        The comment for unsigning the VLAN from the user group.

        Step 8   Click Submit.

        Configuring a Private VLAN Port

        You can associate a private VLAN ID as primary and another private VLAN ID as secondary.


          Step 1   On the menu bar, choose Physical > Network.
          Step 2   In the Network pane, expand the pod.
          Step 3   Select the network device to be configured.
          Step 4   Click the Private VLANs tab.
          Step 5   Click Configure Private VLAN Port.
          Step 6   In the Configure Private VLAN Port dialog box, complete the following fields:
          Name Description

          Select Port drop-down list

          Choose a port on which the VLAN needs to be configured.

          Type field

          Choose one of the following as the port type for VLAN:

          • host

          • promiscuous

          Primary VLAN ID drop-down list

          Choose the primary VLAN ID number.

          Secondary VLAN ID field

          Choose the VLAN ID number to associate as a secondary VLAN.

          Copy Running configuration to Startup configuration check box

          Check the check box to copy the running configuration to the startup configuration. Uncheck the check box if you do not want to copy the running configuration.

          Step 7   Click Submit.

          Creating a Private Primary and Secondary VLAN

          A private VLAN domain has only one primary VLAN. Each port in a private VLAN domain is a member of the primary VLAN; the primary VLAN is the entire private VLAN domain. Secondary VLANs provide isolation between ports within the same private VLAN domain. The two types of secondary VLANs within a primary VLAN are as follows:

          • Isolated VLANs—Ports within an isolated VLAN that cannot communicate directly with each other at the Layer 2 level.
          • Community VLANs—Ports within a community VLAN that can communicate with each other but cannot communicate with ports in other community VLANs or in any isolated VLANs at the Layer 2 level.

            Step 1   On the menu bar, choose Physical > Network.
            Step 2   In the Network pane, expand the pod.
            Step 3   Select the network device to be configured.
            Step 4   Click the Private VLANs tab.
            Step 5   Click Create Private VLAN.
            Step 6   In the Create Private VLAN dialog box, complete the following fields:
            Name Description

            VLAN ID field

            The VLAN ID number that you choose within the valid range for the private VLAN.

            Private VLAN Type drop-down list

            Choose Primary to make this VLAN the primary VLAN.

            Copy Running configuration to Startup configuration check box

            Check the check box to copy the running configuration to the startup configuration.

            Step 7   Click Submit to create a private VLAN.
            Step 8   In the Private VLANs tab, click Create Private VLAN.
            Step 9   In the Create Private VLAN dialog box, complete the following fields:
            Name Description

            VLAN ID field

            The VLAN ID number that you choose within the valid range for the private VLAN.

            Private VLAN Type drop-down list

            Choose either the Community or Isolated option to make this private VLAN the secondary VLAN within the same private VLAN domain.

            Copy Running configuration to Startup configuration check box

            Check the check box to copy the running configuration to the startup configuration.

            Step 10   Click Submit.

            Associating a Private Primary and Secondary VLAN

            You can associate a private VLAN ID as primary and another private VLAN ID as secondary.


              Step 1   On the menu bar, choose Physical > Network.
              Step 2   In the Network pane, expand the pod.
              Step 3   Select the network device to be configured.
              Step 4   Click the Private VLANs tab.
              Step 5   Click Associate Private VLAN.
              Step 6   In the Associate Private VLAN dialog box, complete the following fields:
              Name Description

              Primary VLAN ID field

              The primary VLAN ID number.

              Action drop-down list

              Choose add to create the association to the primary VLAN or remove to cancel an existing association to the primary VLAN.

              Secondary VLAN ID drop-down list

              Choose the VLAN ID number to associate as a secondary VLAN.

              Copy Running configuration to Startup configuration check box

              Check the check box to copy the running port profile configuration to the startup configuration. Uncheck the check box if you do not want to copy the running configuration.

              Step 7   Click Submit.

              Disassociating a Private VLAN

              You can remove the association of primary VLAN from the secondary VLAN.


                Step 1   On the menu bar, choose Physical > Network.
                Step 2   In the Network pane, expand the pod.
                Step 3   Select the network device to be configured.
                Step 4   Click the Private VLANs tab.
                Step 5   Choose a private VLAN from the Private VLANs table.
                Step 6   From the drop-down icon at the top right of the table, choose Delete Associate Private VLAN.
                Step 7   In the Delete Associate Private VLAN dialog box, check the Copy Running configuration to Startup configuration check box to copy the running configuration to the startup configuration. Uncheck the check box if you do not want to copy the running configuration.
                Step 8   Click Submit.

                Removing a Private VLAN Port


                  Step 1   On the menu bar, choose Physical > Network.
                  Step 2   In the Network pane, expand the pod.
                  Step 3   Select the network device to be configured.
                  Step 4   Click the Private VLANs tab.
                  Step 5   From the drop-down icon at the top right of the table, choose Remove Private VLAN Port.
                  Step 6   In the Remove Private VLAN Port dialog box, complete the following fields:
                  Name Description

                  Select Port drop-down list

                  Choose a port from which the private VLAN needs to be removed.

                  Type field

                  Choose one of the following as the port type for VLAN:

                  • host

                  • promiscuous

                  Copy Running configuration to Startup configuration check box

                  Check the check box to copy the running configuration to the startup configuration. Uncheck the check box if you do not want to copy the running configuration.

                  Step 7   Click Submit.

                  Deleting a Private VLAN


                    Step 1   On the menu bar, choose Physical > Network.
                    Step 2   In the Network pane, expand the pod.
                    Step 3   Select the network device to be configured.
                    Step 4   Click the Private VLANs tab.
                    Step 5   Choose a private VLAN from the Private VLANs table.
                    Step 6   From the drop-down icon at the top right of the table, choose Delete Private VLAN.
                    Step 7   In the Delete Private VLAN dialog box, choose Primary or Secondary as the VLAN type.
                    Step 8   Check the Copy Running configuration to Startup configuration check box to copy the running configuration to the startup configuration. Uncheck the check box if you do not want to copy the running configuration.
                    Step 9   Click Submit.

                    Deleting a VLAN


                      Step 1   On the menu bar, choose Physical > Network.
                      Step 2   In the Network pane, expand the pod.
                      Step 3   Select the network device for which the VLAN needs to be deleted.
                      Step 4   Click the VLANs tab.
                      Step 5   Select the VLAN to be deleted.
                      Step 6   Click Delete VLAN.

                      The Delete VLAN dialog box appears to confirm deletion of VLAN.

                      Step 7   Check the Copy Running configuration to Startup configuration check box to copy the VLAN configuration to the startup configuration.
                      Step 8   Click Delete.