- Community Home
- >
- Networking
- >
- Legacy
- >
- Switches, Hubs, Modems
- >
- Re: What is the goal of using VLans ?
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО04-06-2005 09:28 PM
тАО04-06-2005 09:28 PM
What is the goal of using VLans ?
sorry, i'm really a beginner....
I have 3 HP Procurve 2524.
Now, could someone explain me the goa lof using Vlans please.
For the moment here is what i think about it :
- I have a lan, lets say using 192.168.1.XXX / 255.255.255.0
- Now, i want to make few of my servers public on internet, so i need to add a switch that would be attached to my firewall's DMZ port.
Will Vlan securely allow me to avoid using a new Switch by sayingfor example taht port 1 to 5 would be different (and isolated) network ?
thanks
Sorry for my poor english.
Florent
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО04-07-2005 12:51 AM
тАО04-07-2005 12:51 AM
Re: What is the goal of using VLans ?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО04-10-2005 08:36 PM
тАО04-10-2005 08:36 PM
Re: What is the goal of using VLans ?
Your firewall will be connected with 2 ports to the switch. One will be connected to port 1 (for example) for the DMZ VLAN. The other will be connected to the LAN VLAN.
For security reasons, make sure the DMZ VLAN doesn't have a management interface (IP-address).
Why it is less secure than a new switch is because if the switch can be hacked from the outside, it would most probably be on the DMZ VLAN. Because the switch is also connected to the LAN, the hacker gains access to the LAN. The functionality of the 2500 doesn't allow for a lot to be done though. It's not possible to let the 2500 route between the VLAN's and such. A possible attack would be telnetting to the firewall on the inside interface, where there are less restrictions.
With a seperate switch, the hacker would be contained to that switch, and would not gain access to the LAN.
The scenario described above is highly unlikely to happen/succeed, so the security risk is low on that imo.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО04-10-2005 08:49 PM
тАО04-10-2005 08:49 PM
Re: What is the goal of using VLans ?
So Vlan isn't really what i was thinking it was.
I'm not sure my boss would be ok to take such a risk...let's buy another switch ;-((
Thanks
Florent
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО04-11-2005 02:58 AM
тАО04-11-2005 02:58 AM
Re: What is the goal of using VLans ?
While not really related to your situation, I have included a link to an article that touches upon VLAN security on some of the higher end products. There are a lot of people looking to VLANs to quarantine rogue connections and wireless APs.
http://www.hp.com/rnd/pdf_html/guest_vlan_paper.htm