STEP 23 — VLANs (WHY before HOW)

Before typing commands, you must understand why VLANs exist in your network.

Right now (current state)

All HQ PCs are in one broadcast domain
All traffic is mixed
No separation between:
- users
- servers
- Wi-Fi

This does not scale and is not secure.

🔹 What VLANs will do for your design

You already planned this (which is excellent):

VLAN	Purpose	Subnet
VLAN 10	HQ Users	10.10.10.0/24
VLAN 20	HQ Servers	10.10.20.0/24
VLAN 30	HQ Wi-Fi	10.10.30.0/24

VLANs will:

Split the switch into multiple logical networks
Reduce broadcasts
Enable security policies
Force traffic to go through the router (Layer 3)

This is why inter-VLAN routing exists.

🔹 What changes conceptually (important)

Before VLANs

PCs ─── Switch ─── Router

After VLANs

VLAN 10 ─┐
VLAN 20 ─┼── Switch ──(TRUNK)── Router
VLAN 30 ─┘

Switch = Layer 2 separation (VLANs)
Router = Layer 3 routing between VLANs

🔒 CCNA GOLD RULE (remember this)

One VLAN = One subnet = One default gateway

You already built the subnets — now we bind them to VLANs.

Leave a Reply Cancel reply

► Necessary Cookies Always Active

Necessary cookies enable essential site features like secure log-ins and consent preference adjustments. They do not store personal data.

► Functional Cookies Remark

Functional cookies support features like content sharing on social media, collecting feedback, and enabling third-party tools.

► Analytical Cookies Remark

Analytical cookies track visitor interactions, providing insights on metrics like visitor count, bounce rate, and traffic sources.

► Advertisement Cookies Remark

Advertisement cookies deliver personalized ads based on your previous visits and analyze the effectiveness of ad campaigns.