Information Technology Reference
In-Depth Information
a port group can be associated with only one VLAN at a time, but multiple port groups can be
associated with a single VLAN. Later in this chapter when we discuss security settings (in the
section “Coni guring Virtual Switch Security”), you'll see some examples of when you might
have multiple port groups associated with a single VLAN.
Figure 5.25
VLANs can reduce
the number of
vSwitches, uplinks,
and cabling
required.
ESXi host
vSwitch0
vSwitch1
vSwitch2
ESXi management
network
Production port group
(
VLAN ID 100
)
TestDev port group
(
VLAN ID 200
)
VMkernel port
VLAN ID 100
VLAN ID 101
Management
network
vMotion
network
Production &
Test /dev VLANs
To make VLANs work properly with a port group, the uplinks for that vSwitch must be con-
nected to a physical switch port coni gured as a trunk port. A trunk port understands how to
pass trafi c from multiple VLANs simultaneously while also preserving the VLAN IDs on the
trafi c. Figure 5.26 shows a snippet of coni guration from a Cisco Catalyst 3560G switch for a
couple of ports coni gured as trunk ports.
Figure 5.26
h e physical switch
ports must be con-
fi gured as trunk
ports in order to
pass the VLAN
information to the
ESXi hosts for the
port groups to use.
