is there such a technology as time based vlan?

Answered Question
Jun 11th, 2009
User Badges:

Hi,


I know that this is a funny question to ask. But did anyone come across such technology, Cisco has timed based ACL, but do they have time based vlan membership for switch?


Thanks.

Correct Answer by hobbe about 8 years 1 month ago

AFAIK this is not supported.

however there are as always workarounds.


What you can do is per port vlan and trap the link up, and through a script set the vlan of that swichport if you want a vlan to be X minutes from linkup.


If you want the Vlans to be at a certain time ie from 08:00 AM to 05:30 PM it should belong to vlan 2 and between 05:31 PM to 07:59 AM the next day you could use the kron and a small tcl script to set the ports at that time.


good luck hth

Correct Answer by illusion_rox about 8 years 1 month ago

This can easily be achieved through EEM. USing time based event mode, we can simply specify which vlan(s) to create at which time and which ports to assign to them.



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 3.8 (5 ratings)
Loading.
Leo Laohoo Thu, 06/11/2009 - 15:03
User Badges:
  • Super Gold, 25000 points or more
  • Hall of Fame,

    The Hall of Fame designation is a lifetime achievement award based on significant overall achievements in the community. 

  • Cisco Designated VIP,

    2017 LAN, Wireless

There's time-based ACL so you create an ACL to allow/deny traffic based on time.


And also, depending on your IOS, you can use EnergyWise as well.

I suppose you could set up the ACS for time-based VLANs...you can specify a "time bound alternate group" for individual authenticated users...which could then pass back the RADIUS assigned VLAN attribute and assign it differently.


that said, you could tie this to 802.1x authentication to make something similar to what you describe, i think...though i have not tried it myself.

Correct Answer
illusion_rox Fri, 06/12/2009 - 02:43
User Badges:

This can easily be achieved through EEM. USing time based event mode, we can simply specify which vlan(s) to create at which time and which ports to assign to them.



Correct Answer
hobbe Fri, 06/12/2009 - 05:13
User Badges:
  • Gold, 750 points or more

AFAIK this is not supported.

however there are as always workarounds.


What you can do is per port vlan and trap the link up, and through a script set the vlan of that swichport if you want a vlan to be X minutes from linkup.


If you want the Vlans to be at a certain time ie from 08:00 AM to 05:30 PM it should belong to vlan 2 and between 05:31 PM to 07:59 AM the next day you could use the kron and a small tcl script to set the ports at that time.


good luck hth

Actions

This Discussion