Is it possible to have multiple vlans in single port? Current configuration what i have is "switchport access vlan2" which means if a vlan3 users wanted to connect on this same port, I will have change the configuration as "switchport access vlan3" every time & vice versa. This is required for me to have this achieve in the conference room network ports in my office where multiple users from various vlan's often connects & every time I will have to change the port settings manually
Yes and no....you can have two vlans on one port but only one for Data and the other for VoIP, but you can't have two differnt VLAN's for data or even two different VLAN's for VoIP.
Do all your people have static IP addresses? Also are they in different VLAN for security reasons?
Multiple vlans YES, because for security reason as vlan 2 uses should access all vlans & vlan 3 should access only internet.
All users will get IP address from DHCP server using ip helper-address.
Some of the latest port security stuff supports access port VLAN assignment based on user authenication (non-authenicated users get a guest VLAN).
"switcport trunk encapsulation dot1q" & is found in my 3650 but in 2960 "switchport mode trunk" is alone found. Could that be a limitation in 2960 switch?
Ahhhh ... The 2950 and 2960 switch will only support Dot1Q encapsulation. This is why the command "switchport trunk encapsulation dot1q" doesn't exist on these two models.
If you enter the command "sh interface
I found a better way to acheive this by implementing VMPS. But I really appreciate for your continuious suggestion :-)/
However, VMPS demands a CatOS device somewhere and is an old feature which Cisco is not supporting going forward (as CatOS is deprecated).
See also this article:
The way forward will be to look into NAC.
Just out of curiosity: do your users bring laptops to the conference room and have to connect into your switch?
Are the clients assigned to a VLAN in the operating system?
Please describe your scenario more for the sake of wisdom. I'd like to know what to think about if I have to approach such a situation in the future.
We have multiple departments in the office & each department managers belows to different vlan's. They use have a meeting once in every 2 days & they all join in the conference room & connect their laptops. Some of the department managers will have access to server vlan's & some of them don't & few of them have access to all vlans. To acheive this i need to have multiple vlan support without changing the configuration on the switchport.
So, their VLAN access is more of a company policy issue and not something that is configured on their laptops? Or are you using RADIUS (or some other means) to assign their specific machines to a VLAN when they connect to the switch?
No RADIUS is using, it is just the DHCP assigns the MAC based IP addresses to the respective department head on their respective vlan.