Mulitple vlan support in one single port

Anand Narayana · ‎07-09-2009

Is it possible to have multiple vlans in single port? Current configuration what i have is "switchport access vlan2" which means if a vlan3 users wanted to connect on this same port, I will have change the configuration as "switchport access vlan3" every time & vice versa. This is required for me to have this achieve in the conference room network ports in my office where multiple users from various vlan's often connects & every time I will have to change the port settings manually

burleyman · ‎07-09-2009

Yes and no....you can have two vlans on one port but only one for Data and the other for VoIP, but you can't have two differnt VLAN's for data or even two different VLAN's for VoIP.

Do all your people have static IP addresses? Also are they in different VLAN for security reasons?

Mike

Anand Narayana · ‎07-09-2009

Multiple vlans YES, because for security reason as vlan 2 uses should access all vlans & vlan 3 should access only internet.

All users will get IP address from DHCP server using ip helper-address.

Joseph W. Doherty · ‎07-09-2009

Some of the latest port security stuff supports access port VLAN assignment based on user authenication (non-authenicated users get a guest VLAN).

Leo Laohoo · ‎07-09-2009

How about configuring the ports as Dot1Q Trunk and specifying what VLANs are allowed?

Anand Narayana · ‎07-09-2009

Leo,

That was really a good thought. Lemme try this morning & will come back with the test result :-)

Anand Narayana · ‎07-10-2009

Unfortunately it never worked & ended up with unsuccessful result :-(

Pronoy Dasgupta · ‎07-10-2009

what switch are you using?

Pronoy

Anand Narayana · ‎07-11-2009

I use WS-C2960-48TT-L & the IOS is

c2960-lanbase-mz.122-35.SE5.bin

Leo Laohoo · ‎07-11-2009

Ok, now you getting my curiosity. Any switch can do Dot1Q. Can you elaborate why it's not working?

Anand Narayana · ‎07-11-2009

"switcport trunk encapsulation dot1q" & is found in my 3650 but in 2960 "switchport mode trunk" is alone found. Could that be a limitation in 2960 switch?

Leo Laohoo · ‎07-11-2009

Ahhhh ... The 2950 and 2960 switch will only support Dot1Q encapsulation. This is why the command "switchport trunk encapsulation dot1q" doesn't exist on these two models.

If you enter the command "sh interface switch" you'll see the default is Dot1Q.

Anand Narayana · ‎07-12-2009

Leo,

I found a better way to acheive this by implementing VMPS. But I really appreciate for your continuious suggestion :-)/

iyde · ‎07-18-2009

However, VMPS demands a CatOS device somewhere and is an old feature which Cisco is not supporting going forward (as CatOS is deprecated).