VLAN Configuration Guidelines on Layer 3 Switch

As networks grow larger and larger, scalability becomes an issue. Every device in the network needs to send broadcasts to communicate in a broadcast domain . As more devices are added to the broadcast domain, more broadcasts start to saturate the network. In this case, VLAN (Virtual LAN) is needed to separate broadcast domains virtually, eliminating the need to create completely separate hardware LANs to overcome this large-broadcast-domain issue. In this post, we’re gonna expound the motivators to deploy VLAN and how to set up VLAN configuration step by step.

VLAN Configuration

Motivators to Implement VLAN

VLAN is a way of creating multiple virtual switches inside one physical data switch. There are a lot of reasons to implement VLAN, some of which are listed as follows.

  • Link Utilization: Link utilization is another big reason to use VLANs. Spanning tree by function builds a single path through your layer 2 network to prevent loops. If you have multiple redundant links to your aggregating devices then some of these links will go unused. To get around this you can build multiple STP topology with different VLANs.
  • Service Separation: If you have IP security cameras, IP Phones, and Desktops all connecting into the same switch it might be easier to separate these services out into their own subnet. This would also allow you to apply QoS markings to these services based on VLAN instead of some higher layer service. You can also apply ACLs on the device performing Layer 3 routing to prevent communication between VLANs that might not be desired.
  • Subnet Size: If a single site becomes too large you can break that site down into different VLANs which will reduce the number of hosts that see need to process each broadcast.

VLAN Configuration Guidelines on Layer 3 Switch

Configuring two or more VLANs to communicate with each other requires the use of either a VLAN-aware router or a Layer 3 switch. VLAN configuration can be accomplished either in CLI interface or in Web interface. The following video is a VLAN configuration example on FS S5800/S5850 10 gigabit switch.

Configure VLAN in CLI (command-line interface)

Here we take FS S5850-32S2Q Layer 3 switch as an example to configure VLAN. To create a VLAN via CLI interface, SecureCRT software is required to enter CLI interface, then perform the VLAN configuration command in the chart below:

Procedure Command Purpose
Step 1 Set the parameters of COM2 port Quick connect on startup
Step 2 #enter Enter CLI interface
Step 3 #configure terminal Enter the global configure mode
Step 4 #vlan database Enter VLAN configure mode
Step 5 #show vlan all Check the details of all VLANs on the switch
Configure VLAN in Web Interface

Configuring VLAN in Web Interface is quite simple. Just perform the following two steps and you would see the basic info of the VLAN that is created.

Step 1: Log in the Web user interface using the account and password

Step 2: Find the service management and create a new VLAN, and set its ID as 10 or 20.

Note: Ports configured to use VLAN 10 act as if they’re connected to the exact same switch. Ports in VLAN 20 can not directly talk to ports in VLAN 10. They must be routed between the two or have a link that bridges the two VLANs


VLAN deployments make it easy for network engineers to partition a single switched network to match the functional and security requirements of their systems without having to run new cables or make major changes in their current network infrastructure. The proper VLAN configuration on Layer 3 switches ensures reliable and secure data link access to all hosts connected to switch ports. Knowing more about VLAN configuration would allow you to use them when you need them and to use them correctly when you do.

LAN vs WAN vs MAN: Which One to Choose?

Network is essential for establishing communications among devices such as computers, routers, or fiber switches to operate over the area they cover. LAN (Local Area Network), WAN (Wide Area Network) and MAN (Metropolitan Area Network) are the three most prevalent types of networks that are utilized today. There are some similarities and differences between them. LAN vs WAN vs MAN, which one should you choose?


What Is LAN?

LAN is an interconnection of a group of related networking devices within a small geographical area where the distance between these devices is small. Some of the LANs also cover the networks in office , school, and home. Most of the LANs are built for the purpose of sharing vital resources such as printers and exchanging files.

LAN is also widely used to provide services such as sharing computer applications, gaming and accessing the internet. This type of network is under the control of one administrator who is in charge of the configurations and settings and other devices connected through Ethernet cables and wireless routers.

What Is WAN?

WAN is a kind of network connection between multiple networking devices over a large geographical area. The connection can be between different cities or even countries. A WAN network can be a collection of small networks that have been combined, or it can be as a result of various private business entities. One good example of WAN is the internet, since it connects computers from different corners of the world.

The WAN network is too complex to be managed by private administrators. Therefore, WANs usually have a public ownership, where network devices in this network can be connected either by cables or through a wireless connection.

What Is MAN?

As the name suggests, MAN is a type of network that connects network devices within a specific geographical area. MAN lies in between LAN and WAN. The area covered by MAN network is larger than that in LAN but smaller than that in WAN. MANs are mostly used to provide fast connections to cities and large institutions.

MAN experiences comparatively high speeds to facilitate fast sharing of resources such as files within a city. One main disadvantage of the MAN is the high cost. The technology deployed for MAN network is pricier than that of LAN and WAN.

Key Comparison Between LAN vs WAN vs MAN

LAN vs WAN vs MAN, there are similarities and differences between them as listed in the chart below.

Parameter LAN MAN WAN
Ownership of Network Private Private or Public Private or Public
Design and Maintenance Easy Difficult Difficult
Propagation Delay Short Moderate Long
Speed High Moderate Low
Congestion Less More More
Application College, School, Hospital Small towns, City Country/Continent


Generally speaking, there are many advantages of LAN over MAN and WAN. LAN provides excellent reliability, high data transmission rate, and they can easily be managed. However, LAN cannot cover cities or towns and for that MAN is needed, which can connect city or a group of cities together. WAN is not restricted to a geographical location, although it might be confined within the bounds of a state or country.