Preliminary

Virtual Local Area Network (VLAN)

Implementation Guide
September 22, 2008

Americas Headquarters
Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134-1706
USA
http://www.cisco.com
Tel: 408 526-4000
800 553-NETS (6387)
Fax: 408 527-0883

Text Part Number: OL-16314-01

 Preliminary

THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. ALL
STATEMENTS, INFORMATION, AND RECOMMENDATIONS IN THIS MANUAL ARE BELIEVED TO BE ACCURATE BUT ARE PRESENTED WITHOUT
WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. USERS MUST TAKE FULL RESPONSIBILITY FOR THEIR APPLICATION OF ANY PRODUCTS.

THE SOFTWARE LICENSE AND LIMITED WARRANTY FOR THE ACCOMPANYING PRODUCT ARE SET FORTH IN THE INFORMATION PACKET THAT
SHIPPED WITH THE PRODUCT AND ARE INCORPORATED HEREIN BY THIS REFERENCE. IF YOU ARE UNABLE TO LOCATE THE SOFTWARE LICENSE
OR LIMITED WARRANTY, CONTACT YOUR CISCO REPRESENTATIVE FOR A COPY.

The following information is for FCC compliance of Class A devices: This equipment has been tested and found to comply with the limits for a Class A digital device, pursuant
to part 15 of the FCC rules. These limits are designed to provide reasonable protection against harmful interference when the equipment is operated in a commercial
environment. This equipment generates, uses, and can radiate radio-frequency energy and, if not installed and used in accordance with the instruction manual, may cause
harmful interference to radio communications. Operation of this equipment in a residential area is likely to cause harmful interference, in which case users will be required
to correct the interference at their own expense.

The following information is for FCC compliance of Class B devices: The equipment described in this manual generates and may radiate radio-frequency energy. If it is not
installed in accordance with Cisco’s installation instructions, it may cause interference with radio and television reception. This equipment has been tested and found to
comply with the limits for a Class B digital device in accordance with the specifications in part 15 of the FCC rules. These specifications are designed to provide reasonable
protection against such interference in a residential installation. However, there is no guarantee that interference will not occur in a particular installation.

Modifying the equipment without Cisco’s written authorization may result in the equipment no longer complying with FCC requirements for Class A or Class B digital
devices. In that event, your right to use the equipment may be limited by FCC regulations, and you may be required to correct any interference to radio or television
communications at your own expense.

You can determine whether your equipment is causing interference by turning it off. If the interference stops, it was probably caused by the Cisco equipment or one of its
peripheral devices. If the equipment causes interference to radio or television reception, try to correct the interference by using one or more of the following measures:

• Turn the television or radio antenna until the interference stops.

• Move the equipment to one side or the other of the television or radio.

• Move the equipment farther away from the television or radio.

• Plug the equipment into an outlet that is on a different circuit from the television or radio. (That is, make certain the equipment and the television or radio are on circuits
controlled by different circuit breakers or fuses.)

Modifications to this product not authorized by Cisco Systems, Inc. could void the FCC approval and negate your authority to operate the product.

The Cisco implementation of TCP header compression is an adaptation of a program developed by the University of California, Berkeley (UCB) as part of UCB’s public
domain version of the UNIX operating system. All rights reserved. Copyright © 1981, Regents of the University of California.

NOTWITHSTANDING ANY OTHER WARRANTY HEREIN, ALL DOCUMENT FILES AND SOFTWARE OF THESE SUPPLIERS ARE PROVIDED “AS IS” WITH
ALL FAULTS. CISCO AND THE ABOVE-NAMED SUPPLIERS DISCLAIM ALL WARRANTIES, EXPRESSED OR IMPLIED, INCLUDING, WITHOUT
LIMITATION, THOSE OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OR ARISING FROM A COURSE OF
DEALING, USAGE, OR TRADE PRACTICE.

IN NO EVENT SHALL CISCO OR ITS SUPPLIERS BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, OR INCIDENTAL DAMAGES, INCLUDING,
WITHOUT LIMITATION, LOST PROFITS OR LOSS OR DAMAGE TO DATA ARISING OUT OF THE USE OR INABILITY TO USE THIS MANUAL, EVEN IF CISCO
OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.

CCVP, the Cisco logo, and Welcome to the Human Network are trademarks of Cisco Systems, Inc.; Changing the Way We Work, Live, Play, and Learn is a service mark of
Cisco Systems, Inc.; and Access Registrar, Aironet, Catalyst, CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, CCSP, Cisco, the Cisco Certified Internetwork Expert logo,
Cisco IOS, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Cisco Unity, Enterprise/Solver, EtherChannel, EtherFast, EtherSwitch, Fast Step,
Follow Me Browsing, FormShare, GigaDrive, HomeLink, Internet Quotient, IOS, iPhone, IP/TV, iQ Expertise, the iQ logo, iQ Net Readiness Scorecard, iQuick Study,
LightStream, Linksys, MeetingPlace, MGX, Networkers, Networking Academy, Network Registrar, PIX, ProConnect, ScriptShare, SMARTnet, StackWise, The Fastest Way
to Increase Your Internet Quotient, and TransPath are registered trademarks of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.

All other trademarks mentioned in this document or Website are the property of their respective owners. The use of the word partner does not imply a partnership relationship
between Cisco and any other company. (0711R)

WiMAX and Mobile WiMAX are trademarks of the WiMAX Forum.

Any Internet Protocol (IP) addresses used in this document are not intended to be actual addresses. Any examples, command display output, and figures included in the
document are shown for illustrative purposes only. Any use of actual IP addresses in illustrative content is unintentional and coincidental.

Virtual Local Area Network (VLAN) Implementation Guide

© 2008 Cisco Systems, Inc. All rights reserved.
 Preliminary

CONTENTS

About This Document v

Purpose v

Related Documents v

Revision History v

Terms vi

CHAPTER 1 Overview 1-1

What is VLAN? 1-1

How VLAN Tagging Occurs 1-2

CHAPTER 2 Planning VLAN Implementation 2-1

Setting up the VLAN Switched Network 2-1

VLAN Configuration Decisions 2-1

Setting up the Management VLAN 2-1

CHAPTER 3 Configuring VLAN 3-1

High-level Steps 3-1

Creating a VRF 3-1

Associating a VRF to a User Group 3-2

Set up BS Management VLAN 3-4

GLOSSARY

Virtual Local Area Network (VLAN) Implementation Guide

OL-16314-01 iii
Contents

Preliminary

Virtual Local Area Network (VLAN) Implementation Guide

iv OL-16314-01
 Preliminary

About This Document

Purpose
This document is intended for Network Administrators, Engineers, or Planners who will be
implementing the Virtual Local Area Network (VLAN) feature in a BWX Mobile WiMAX system.

Related Documents
• MMobile WiMAX Overview Manual
• BWX Mobile WiMAX Configuration Guide

Revision History
Date Revision/Version Author Editor Comments
4.11.05 A/1.0 C. Sanders M. Cox Draft 4.3
8.01.05 A/1.0/pv1.7 C. Sanders M. Cox Commercial Release 4.3.1
02.10.06 B/1.0/pv1.1 C. Sanders M. Cox Commercial Release 4.4.2 – in 802.1Q
description changed 2-byte tag to 4-byte tag
3.14.06 C/1.0/pv1.1 C. Sanders M. Cox Preliminary Release 4.5 – no changes made
5.30.06 C/1.0/pv1.2 C. Sanders M. Cox VO Release 4.5 – added RHOS designation
to document number
10.18.06 C/1.0/pv1.4 C. Sanders J. Cook Commercial Release 4.5
1.31.07 D/1.0 N/A S. Redfoot Commercial Release 4.5.2
7.30.07 E/1.0 N/A M. Cox Commercial Release 6.0 – Added
information regarding Smart WiMAX initial
implementation of VLAN
8.1.07 F/1.0 N/A M. Cox Preliminary Release 6.1 – added
information regarding Smart WiMAX
implementation of VLAN.
9.30.07 F/1.0 N/A M. Cox Commercial Release 6.1

Virtual Local Area Network (VLAN) Implementation Guide

OL-16314-01 v
 About This Document

Preliminary

Date Revision/Version Author Editor Comments

2.1.2008 G/1.0 N/A M. Cox Commercial Release 6.2.
3.24.08 -/01 N/A M. Cox Commercial Release 6.2. Changed the
book’s part number. Also changed Navini
terminology to Cisco terminology.
9.11.2008 B. Philipbar Commercial Release 7.0

Terms
This information in this document pertains to the BWX Mobile WiMAX system. In this document and
all customer documents as of this release, when referring to Mobile WiMAX systems.

Warning Warning: For safety and compliance reasons, the installation and configuration described in this
document should be attempted only by persons who have completed appropriate training and
achieved proper technical certifications regarding the use and support of the applicable products.
Incorrect installation, configuration and/or service may lead to damage to the product(s) and/or risk
of personal injury, and may void your product warranty and/or entitlement to support services. You,
the customer, are responsible for obtaining and maintaining any required regulatory licenses,
following appropriate safety procedures, and providing adequately trained staff to perform any
installation, configuration and service of the products described herein.

Virtual Local Area Network (VLAN) Implementation Guide

vi OL-16314-01
 Preliminary

CH A P T E R 1
Overview

What is VLAN?
The VLAN feature allows an Operator to separate users’ traffic into smaller segments for the purpose of
security, administration, or better network efficiency. VLANs not only allows the Operator to segment
users, but using a business model (refer to Figure 1-2), the Operator can sell services to more than one
client group.

Figure 1-1 Example of Residential Model Using VLAN

AAA

L3 Control Network

2 R6
Residential Traffic

Public Network

R6 + Residential Traffic

3
GRE Tunnel
1

Access Network

Marked Marked Marked Marked

by Host by SS by BS by BS

DSCP 0 SF 1 (BE) GRE DSCP 0 VLAN 4, CoS 0 GRE DSCP 0 DSCP 0

DSCP 46 SF 2 (UGS) GRE DSCP 46 VLAN 4, CoS 7 GRE DSCP 46 DSCP 46

4 5 6

9 8 7

Virtual Local Area Network (VLAN) Implementation Guide

OL-16314-01 1-1
 Chapter 1 Overview
How VLAN Tagging Occurs

Preliminary

Figure 1-2 Example of Business Model Using VLAN

AAA

L3 Control Network
VLAN 10
R1
R3

VLAN 20
R6

R6

Enterprise
L2 Switched
Network Traffic

How VLAN Tagging Occurs

Since CPEs are on the access side of the network, all traffic is un-tagged at the CPE to BWX Basestation
(BS) interface.
The BWX Basestation adds the appropriate VLAN tags to all upstream traffic sent from the CPE to the
BWX Basestation to the Wide Area Network (WAN). When the BWX BS receives VLAN traffic
(downstream) on the trunk port from the back-end network that is destined for a CPE, it removes the
VLAN tag and sends the traffic over-the-air un-tagged to the appropriate CPE.

Note Broadcast packets are not tagged on the downlink.

The BWX EMS manages all Cisco CPE equipment authentications. When a CPE moves from one BWX
BS to another BWX BS, the receiving BWX BS identifies the associated Bridge Group ID and tags the
traffic appropriately. Bridge Groups are explained further in Chapter 3, “Configuring VLAN.”

Virtual Local Area Network (VLAN) Implementation Guide

1-2 OL-16314-01
 Preliminary

CH A P T E R 2
Planning VLAN Implementation

Planning the implementation of the VLAN feature requires an Operator to consider several things. This
section discusses what steps need to be taken in order to prepare for the VLAN feature.

Setting up the VLAN Switched Network

Before the VLAN feature is deployed, a VLAN switched network must be put in place. The VLAN
switched network is not a part of the BWX Mobile WiMAX system. The components of this network
may vary depending on the type of network you use. Consult your network equipment vendor to help
you set up the VLAN network that best fits your needs.

VLAN Configuration Decisions

Before you start to configure the VLAN feature, the following decisions need to be made.
1. Which VRF route distinquishers to use for VRF creation in the WiMAX system?
2. Which User Group to use for the association of the WiMAX system to the rest of the network?
3. Which maintenance window should be used to setup the mangement VLAN?

Setting up the Management VLAN

One of the characteristics of configuring VLAN is to set up a Management VLAN. The configuration
steps are explained in Chapter 3, “Configuring VLAN.” However, please be aware that before you
configure the Management VLAN between the BS and EMS, you should determine the best time to do
this. The process for setting it up momentarily disables communication between the two entities.
Therefore, this should be performed at a time when traffic will be least affected.

Virtual Local Area Network (VLAN) Implementation Guide

OL-16314-01 2-1
 Chapter 2 Planning VLAN Implementation
Setting up the Management VLAN

Preliminary

Virtual Local Area Network (VLAN) Implementation Guide

2-2 OL-16314-01
 Preliminary

CH A P T E R 3
Configuring VLAN

High-level Steps
Cisco’s VLAN feature is provisioned through the BWX Element Management System (EMS)
Configuration and Alarm Manager (CAM) application.

Caution The configuration shown and described in this document is the recommended configuration for VLAN
deployment in the Cisco system. Any deviation from the recommended configuration may produce
undesirable results. Operators who are implementing VLAN in an existing network should be careful
when dynamically changing the VLAN groups for users who are using static IPs assigned to their
computers. We recommend using a DHCP server to assign IP addresses.

The following sections describe how to configure the VRFs, VLANs, User Groups, and Management
VLANs. Refer to Figure 3-1 for more information on VLAN configuration order.

Figure 3-1 VLAN Configuration Order

Associate User
Group to VRF
1. Create VRF 2. User Group

Associate the VRF with VLAN

4. Create
3. VLAN Management
VLAN

Creating a VRF
To create a VRF:

Step 1 In the main menu, click Global Config>VRF Table. The system responds with the VRF table
(Figure 3-2).

Virtual Local Area Network (VLAN) Implementation Guide

OL-16314-01 3-1
 Chapter 3 Configuring VLAN
Associating a VRF to a User Group

Preliminary

Figure 3-2 VRF Table

Step 2 Click Create. The system responds with the Create VRF window (Figure 3-3).
Step 3 Type the VRF name into the VrfName box.
Step 4 Type the identifying IP address or reference number into the RouteDistinguisher 1 (IP or Number) box.
Step 5 Type the identifying reference number into the RouteDistinguisher 2 (Number) box.
Step 6 Click Apply. The system responds by adding the new VRF to the VRF Table.

Figure 3-3 Create VRF Window

Associating a VRF to a User Group

Step 1 Click the BWG tab.
Step 2 Double-click a BWG from under the Bwg id heading. The system responds by opening the properties
for that BWG.
Step 3 In the left pane, select User Group and click Configure (Figure 3-4). The system responds with the User
Group Configuration window (Figure 3-5).

Virtual Local Area Network (VLAN) Implementation Guide

3-2 OL-16314-01
Chapter 3 Configuring VLAN
Associating a VRF to a User Group

Preliminary

Figure 3-4 Selecting a User Group

Step 4 Select a user group and click Modify (Figure 3-5). The system responds with the BWG Configure
window (Figure 3-6).

Figure 3-5 User Group Configuration

Step 5 From the VRF Name drop-down, select a VRF (Figure 3-6).

Virtual Local Area Network (VLAN) Implementation Guide

OL-16314-01 3-3
 Chapter 3 Configuring VLAN
Set up BS Management VLAN

Preliminary

Figure 3-6 BWG Configure Window (User Group)

Step 6 Click OK.

Set up BS Management VLAN

Management traffic between the Base Station and BWX EMS can be tagged to support multiple network
configurations (i.e., centralized equipment management). The Operator can use these tags to manage and
protect the Basestation management traffic used for control, alarms, and provisioning. By default,
management traffic is placed on the default VLAN (not tagged).
If you wish to place Management traffic on a non-default VLAN, perform the following steps:

Step 1 Via the BWX EMS, change the Management VLAN for the Basestation. To do this, select the
Basestation, double-click on the Management VLAN option. Then double-click on the Configure
button. The Configure Management VLAN window appears. Enter the VID of the VLAN you wish to
become the Management VLAN. Click the Close button. Perform this step for all the Basestations that
require Management VLAN changes.
Step 2 Reboot all the Basestations involved. Set the configuration source to “BTS”.
Step 3 Configure the VLAN switch(es) on which the Basestations are connected so the switch(es) can forward
the BTS Management VLAN to the EMS.

Note The Basestation will not be able to communicate with the EMS after Step 1 is performed until
Step 3 is performed.

Virtual Local Area Network (VLAN) Implementation Guide

3-4 OL-16314-01
 Preliminary

GLOSSARY

A
ASYNCH Stands for: Asynchronous

Not occurring at regular intervals, as in data piped over a network

ATM Stands for: Asynchronous Transfer Mode

Transporting a broad range of user data at irregular intervals over network facilities

B
BG Stands for: Bridge Group

Logical grouping of end users or Modems. In the wholesale model example, each Bridge Group can
belong to a different ISP.

BS Stands for: Basestation

Network Access equipment and software that transmits and receives, as well as processes, voice or data
calls from mobile units to network connections. A BWX Base Station consists of the BWX 8305 or
2305 Basestation, the Basestation Antenna, plus a Basestation Timing System.

C
CAM Stands for: Configuration & Alarm Manager

An EMS functionality that is handled through a Graphical User Interface for purposes of configuring
elements in the system and handling other OAM requirements.

CLI Stands for: Command Line Interface

A text-based programming language through which a user communicates with an operating system or
an application.

CPE Stands for: Customer Premise Equipment

Communications equipment that resides at the customer's location.

Virtual Local Area Network (VLAN) Implementation Guide

OL-16314-01 GL-1
 Glossary

Preliminary

E
EID Stands for: Equipment Identifier

Field in EMS for assigning IP address or name to individual pieces of equipment for purposes of
configuring the system.

EMS Stands for: Element Management System

An application that allows the user to define and manipulate managed objects as a system within an
overall network.

G
GHz Stands for: Gigahertz

One billion (1,000,000,000) hertz - cycles per second. Ultra high frequency (UHF) signals, including
microwave signals.

GUI Stands for: Graphical User Interface

A graphic rather than purely text based user interface to a computer or computing system.

I
IEEE Stands for: Institute of Electrical and Electronics Engineers

An international, non-profit, professional organization that defines its purpose as "scientific and
education, directed toward the advancement of the theory and practice of electrical, electronics,
communications, and computer engineering, as well as computer science, the allied branches of
engineering and the related arts and sciences. In pursuing these goals, IEEE serves as a major publisher
of scientific journals and a leader of industrial standards.

IP Stands for: Internet Protocol

A TCP/IP protocol used to route data from its source to its destination.

ISP Stands for: Internet Service Provider

A company that provides access to the Internet.

L
LAN Stands for: Local Area Network

A data network of interconnected computers, servers, printers, and other peripherals that communicate
at high speeds over short distances, usually within the same building. Also allows for sharing of
resources.

Virtual Local Area Network (VLAN) Implementation Guide

GL-2 OL-16314-01
 Glossary

Preliminary

M
Modem Stands for: Modulator Demodulator

Navini uses this term for the customer device attached to the end user's PC. The Modem connects to
the Base Station through radio frequency (RF). Also known as the CPE or IAD.

Q
QoS Stands for: Quality of Service

A guaranteed throughput for critical network applications, such as Voice over IP. Term primarily used
in an ATM environment. Five classes of service: Class 1 Video; Class 2 Audio; Class 3 Data
Connection.

S
SYNCH Stands for: Synchronous

Digital packets or signals that are sent at the same, precisely clocked fixed rate of speed.

T
TCP/IP Stands for: Transport Control Protocol/Internet Protocol

A set of protocols that allows cooperating computers to share resources across the network. TCP
provides the reliability in the transmission, while IP provides connectionless packet service.

V
VID Stands for: VLAN identifier

Uniquely identifies a virtual LAN.

VLAN Stands for: Virtual Local Area Network

A Local Area Network that is logically separated into segments for the purpose of routing traffic based
on predefined groups of users.

Virtual Local Area Network (VLAN) Implementation Guide

OL-16314-01 GL-3
 Glossary

Preliminary

W
WAN Stands for: Wide Area Network
1
A communications network that spans geographically separate areas and which provide long-haul
services. Examples of internetworked connections are frame relay, SMDS, and X.25 protocols.
2
General term for any product primarily used to gain access to the Internet, as opposed to being part of
the actual Internet devices or software.

Virtual Local Area Network (VLAN) Implementation Guide

GL-4 OL-16314-01