Switches, Hubs, and Modems
cancel
Showing results for 
Search instead for 
Did you mean: 

MAC Based VLANs?

Preston Gallwas
Valued Contributor

MAC Based VLANs?

I'm investigating ways to isolate all of our avaya phones onto their own VLAN. One solution would be to make any port starting with an AVAYA mac address a member of another VLAN -- which is fine, unless something else gets plugged into that port (which could happen)

Is there a way to do MAC Based VLANs in the procurve series switches? We use 99% ProCurve 2600's, about 250 of them, across 70 subnets
3 REPLIES
Manfred Arndt
Valued Contributor

Re: MAC Based VLANs?

Here are two ways to put an Avaya phone into the voice VLAN.

METHOD 1:

Configure all client ports as a tagged member of the voice VLAN and untagged member of the data VLAN. Then use the Avaya "site-specific" DHCP option 176 to auto-connect to the voice VLAN. Other devices will only access untagged VLAN.

This double fetch DHCP sequence, where the phone auto-discovers the VID and 802.1p priority via a temporary lease from the DHCP server on the untagged subnet.

For an Avaya 4600 phone, the option 176 string look like:

"MCIPADD=addr1,addr2,MCPORT=1719,TFTPSRVR=addr,L2Q=1,L2QVLAN=50"

This also works well to support phones with attached PC (for Avaya phones with embedded Ethernet switch, e.g. "SW" models or 4620).

Note: Mitel and ShoreTel phones support a similar site-specific DHCP mechanism.


METHOD 2:

Use MAC-auth for all phones (e.g. all MAC's are configured in Radius/AD), then use IDM to dynamically assign ports with phones into the untagged voice VLAN, and other devices into the default VLAN.
Preston Gallwas
Valued Contributor

Re: MAC Based VLANs?

heh. DHCP *sigh* what a dream.

Our Avaya VOIP Implementation, for reasons beyond my knowledge (its handled by another department, another manager)...is all statically assigned.
Manfred Arndt
Valued Contributor

Re: MAC Based VLANs?

You can also manually configure the voice VID using the "Hold ADDR#" menu to enable or disable 802.1Q tagging and the "Hold QOS#" menu to set the VLAN ID.

- 802.1Q: Turn this on to use L2 priority tagging.

- VLAN ID: Set to no zero if a voice VLAN is used.