Tutorial 6

Question 1

Explain the concept of Inter-VLAN routing and compare the three main methods used to implement it.

Answer 1

Inter-VLAN Routing

Concept:
Inter-VLAN routing is a fundamental concept in computer networking that enables communication between different VLANs.
Since VLANs segment a network into isolated broadcast domains, devices in separate VLANs cannot communicate without a routing mechanism.
Inter-VLAN routing allows traffic to pass between VLANs through a router or Layer 3 switch, enabling communication across subnets.

A VLAN is used to logically segment a network, improving performance, security, and manageability. However, this segmentation also means that devices in different VLANs are on different IP subnets and cannot communicate without a router.

Inter-VLAN routing involves:

Routing between subnets: Each VLAN is typically assigned a unique subnet.

Gateway configuration: Devices in each VLAN use a default gateway (router or Layer 3 switch interface) to send traffic to other VLANs.

Routing logic: The router or Layer 3 switch uses its routing table to determine how to forward packets between VLANs.

Three Main Methods of Implementing Inter-VLAN Routing

1. Router-on-a-Stick:
   This method uses a single physical router interface connected to a switch, configured with multiple subinterfaces, each representing a VLAN.
   The switch port is set as a trunk, and each subinterface is tagged with a VLAN ID and assigned an IP address that acts as the default gateway for that VLAN.

✅ Advantages: Simple, low-cost, and easy to configure for small networks.

❌ Disadvantages: Single interface bottleneck under heavy traffic and limited scalability.

2. Layer 3 Switch (Multilayer Switch):
   A Layer 3 switch combines switching and routing capabilities, allowing routing between VLANs internally without an external router.
   Each VLAN is configured with a Switched Virtual Interface (SVI), and routing occurs within the switch using hardware-based processing.

✅ Advantages: High performance, fast convergence, and scalable for large networks.

❌ Disadvantages: Requires Layer 3-capable hardware, which is more expensive.

3. External Router with Physical Interfaces per VLAN:
   Each VLAN connects to a dedicated physical interface on the router.
   Each interface is connected to a switch port assigned to a specific VLAN and configured with an IP address for that VLAN’s subnet.

✅ Advantages: Simple concept, no VLAN tagging required.

❌ Disadvantages: Requires multiple router interfaces, poor scalability, and higher hardware cost.

Question 2

Define what an SVI is and how it functions within a Layer 3 switch.

Answer 2

Switched Virtual Interface (SVI)

An SVI (Switched Virtual Interface) is a logical Layer 3 interface created on a Layer 3 switch to enable routing for a specific VLAN.
It acts as the default gateway for all devices within that VLAN, allowing inter-VLAN communication directly within the switch without needing an external router.

Each SVI is associated with a VLAN ID and is assigned an IP address and subnet mask that hosts in that VLAN use as their gateway.
Routing is performed internally in hardware (ASIC), which provides low latency, high performance, and easy scalability for multiple VLANs.

Question 3

Define what an SVI is and how it functions within a Layer 3 switch.

Answer 3

Routed Ports on a Layer 3 Switch

A routed port on a Layer 3 switch is a physical interface that operates at Layer 3, similar to a router interface.
Unlike normal switch ports that operate at Layer 2, routed ports are not associated with any VLAN and can be assigned an IP address directly.
They are typically used for point-to-point connections between Layer 3 devices or networks and can run routing protocols such as OSPF or EIGRP.

When a port is converted to a routed port using the no switchport command, it no longer participates in VLAN switching and instead performs pure Layer 3 forwarding. This makes it suitable for connecting distribution switches or routers in a campus network.

Difference from SVIs and Access Ports:

• An SVI (Switched Virtual Interface) is a logical Layer 3 interface created per VLAN to enable inter-VLAN routing within the switch. Each SVI has its own IP address and acts as the default gateway for that VLAN. Capable of Routing.
• A routed port, on the other hand, is a physical Layer 3 interface not tied to any VLAN, used mainly for interconnecting Layer 3 devices, and routing between networks or devices.
• An access port operates at Layer 2, belongs to a single VLAN, and connects end devices like PCs or printers. It cannot perform routing functions.

Question 4

What is the main disadvantage of using a router to perform inter-vlan routing between vlans in a Layer 2 switched topology?

Answer 4

Main Disadvantage of Using a Router for Inter-VLAN Routing in a Layer 2 Switched Topology

The main disadvantage of using a router to perform inter-VLAN routing in a Layer 2 switched topology (commonly referred to as the Router-on-a-Stick method) is the limited scalability and performance bottleneck caused by relying on a single physical interface to route traffic between multiple VLANs.

In a Layer 2 network, VLANs segment traffic into separate broadcast domains. Since Layer 2 switches cannot route between VLANs, a router is introduced to handle inter-VLAN communication through a trunk link.

Key disadvantages include:

Single point of traffic flow: All inter-VLAN traffic must pass through a single router interface.

Limited bandwidth: The physical interface has finite capacity, which can lead to congestion, latency, and packet loss under heavy load.

Software-based routing: Traditional routers perform routing in software, which is slower than hardware-based Layer 3 switching.

Poor scalability: As VLANs increase, more subinterfaces must be configured, adding complexity and creating a bottleneck for network growth.

Lack of redundancy: If the router or its interface fails, all inter-VLAN communication stops, creating a single point of failure.

✅ Summary:
While router-on-a-stick is simple and cost-effective for small networks, it becomes a performance and reliability limitation in larger enterprise environments where Layer 3 switches are preferred for high-speed inter-VLAN routing.

Question 5

What are the configuration requirements and benefits of using Layer-3 EtherChannel in a campus network, and how does it differ from Layer-2 EtherChannel?

Answer 5

Layer 3 EtherChannel

A Layer 3 EtherChannel bundles multiple physical Layer 3 interfaces into one logical interface (Port-Channel).
This increases bandwidth, provides redundancy, and enables load balancing between switches or routers in a campus network.

Configuration Requirements:

Create a Port-Channel interface using the channel-group command.

Use no switchport to convert it to a Layer 3 interface.

Assign an IP address to the Port-Channel (not to individual member interfaces).

Configure the same settings (speed, duplex, etc.) on all member interfaces.

Verify the configuration using show etherchannel summary.

Benefits:

Increased bandwidth: Combines multiple physical links into one logical path.

Redundancy and fault tolerance: Traffic continues even if one link fails.

Load balancing: Distributes traffic across available links.

High performance: Hardware-based forwarding improves routing efficiency.

Simplified routing: Only one logical link is used for routing instead of multiple parallel ones.

Difference from Layer 2 EtherChannel:
A Layer 2 EtherChannel operates as a switchport and is used for VLAN trunking between switches. It participates in Spanning Tree Protocol (STP) and does not have an IP address.
A Layer 3 EtherChannel, on the other hand, acts as a routed interface, supports IP addressing and routing protocols, and does not participate in STP. It is typically used to connect distribution and core switches in a campus network.

✅ In short:
Layer 3 EtherChannel = multiple routed links combined for speed, resilience, and load sharing, unlike Layer 2 EtherChannel, which is used for switch-to-switch trunking at Layer 2.

Question 6

Where would a device performing interVLAN routing be placed? Give reasons for your answer.

Answer 6

here a Device Performing Inter-VLAN Routing Should Be Placed

A device performing inter-VLAN routing (router or Layer-3 switch) should be placed centrally in the distribution layer of a hierarchical network design.
This placement ensures efficient traffic flow, easy management, and network scalability.

Reasons for central placement:

Efficient traffic flow: VLANs typically span multiple access switches, so a central routing device handles traffic between them effectively.

Logical segmentation: The distribution layer aggregates VLAN traffic from access switches, making it the best point for routing.

Simplified management: Centralized routing allows easier configuration, monitoring, and troubleshooting.

Scalability: Additional VLANs or switches can be added without redesigning the routing setup.

Redundancy and availability: Placing Layer-3 devices centrally allows high-availability features such as HSRP or VRRP to prevent downtime.

How DHCP Operates in a VLAN-Based Network and the Role of DHCP Relay

DHCP (Dynamic Host Configuration Protocol) automatically assigns IP addresses and configuration details to clients.
In a VLAN-based network, each VLAN is a separate IP subnet, so DHCP broadcasts are limited to that VLAN and cannot reach a DHCP server located elsewhere.

To enable centralized DHCP service, a DHCP relay is configured on the Layer-3 interface (SVI) for each VLAN using the command:
ip helper-address <DHCP></DHCP>

This relay agent forwards DHCP broadcast requests as unicasts to the central DHCP server and then relays the server’s reply back to the client.

Key points:

DHCP operates per VLAN; clients receive addresses from their VLAN’s subnet.

The relay agent allows remote DHCP servers to serve multiple VLANs.

Centralized DHCP improves scalability, consistency, and manageability across the enterprise network.