Are you sure you want to cancel your subscription?

If you cancel, your subscription will remain active through the paid term. You will be able to reactivate the subscription until that date.

Sorry to see you go

Your subscription will remain active until . If you change your mind, you may rectivate your subscription anytime before that date.

Are you sure you want to reactivate?
Welcome Back!

Your subscription has been reactivated and you will continue to be charged on .

Reactivate Subscription

Thank you for choosing to reactivate your subscription. In order to lock in your previous subscription rate, you owe: .

Your Subscription term is from - .

Questions? Call Sales.

Payment Due:

Auto-Renew Subscription

To auto-renew your subscription you need to select or enter your payment method in "Your Account" under Manage Payments.

Click continue to set up your payments.

CBT Nuggets License Agreement

Unless otherwise stated all references to “training videos” or to “videos” includes both individual videos within a series, entire series, series packages, and streaming subscription access to CBT Nuggets content. All references to CBT or CBT Nuggets shall mean CBT Nuggets LLC, a Delaware limited liability company located at 44 Country Club Road, Ste. 150, Eugene, Oregon.

A CBT Nuggets license is defined as a single user license. Accounts may purchase multiple users, and each user is assigned a single license.

  • GRANT OF LICENSE. CBT Nuggets grants you a non-transferable, non-exclusive license to use the training videos contained in this package or streaming subscription access to CBT content (the “Products”), solely for internal use by your business or for your own personal use. You may not copy, reproduce, reverse engineer, translate, port, modify or make derivative works of the Products without the express consent of CBT. You may not rent, disclose, publish, sell, assign, lease, sublicense, market, or transfer the Products or use them in any manner not expressly authorized by this Agreement without the express consent of CBT. You shall not derive or attempt to derive the source code, source files or structure of all or any portion of the Products by reverse engineering, disassembly, decompilation or any other means. You do not receive any, and CBT Nuggets retains all, ownership rights in the Products. The Products are copyrighted and may not be copied, distributed or reproduced in any form, in whole or in part even if modified or merged with other Products. You shall not alter or remove any copyright notice or proprietary legend contained in or on the Products.
  • TERMINATION OF LICENSE. Once any applicable subscription period has concluded, the license granted by this Agreement shall immediately terminate and you shall have no further right to access, review or use in any manner any CBT Nuggets content. CBT reserves the right to terminate your subscription if, at its sole discretion, CBT believes you are in violation of this Agreement. CBT reserves the right to terminate your subscription if, at its sole discretion, CBT believes you have exceeded reasonable usage. In these events no refund will be made of any amounts previously paid to CBT.
  • DISCLAIMER OF WARRANTY AND LIABILITY. The products are provided to you on an “as is” and “with all faults” basis. You assume the entire risk of loss in using the products. The products are complex and may contain some nonconformities, defects or errors. CBT Nuggets does not warrant that the products will meet your needs, “expectations or intended use,” that operations of the products will be error-free or uninterrupted, or that all nonconformities can or will be corrected. CBT Nuggets makes and user receives no warranty, whether express or implied, and all warranties of merchantability, title, and fitness for any particular purpose are expressly excluded. In no event shall CBT Nuggets be liable to you or any third party for any damages, claim or loss incurred (including, without limitation, compensatory, incidental, indirect, special, consequential or exemplary damages, lost profits, lost sales or business, expenditures, investments, or commitments in connection with any business, loss of any goodwill, or damages resulting from lost data or inability to use data) irrespective of whether CBT Nuggets has been informed of, knew of, or should have known of the likelihood of such damages. This limitation applies to all causes of action in the aggregate including without limitation breach of contract, breach of warranty, negligence, strict liability, misrepresentation, and other torts. In no event shall CBT Nuggets’ liability to you or any third party exceed $100.00.
  • REMEDIES. In the event of any breach of the terms of the Agreement CBT reserves the right to seek and recover damages for such breach, including but not limited to damages for copyright infringement and for unauthorized use of CBT content. CBT also reserves the right to seek and obtain injunctive relief in addition to all other remedies at law or in equity.
  • MISCELLANEOUS. This is the exclusive Agreement between CBT Nuggets and you regarding its subject matter. You may not assign any part of this Agreement without CBT Nuggets’ prior written consent. This Agreement shall be governed by the laws of the State of Oregon and venue of any legal proceeding shall be in Lane County, Oregon. In any proceeding to enforce or interpret this Agreement, the prevailing party shall be entitled to recover from the losing party reasonable attorney fees, costs and expenses incurred by the prevailing party before and at any trial, arbitration, bankruptcy or other proceeding and in any appeal or review. You shall pay any sales tax, use tax, excise, duty or any other form of tax relating to the Products or transactions. If any provision of this Agreement is declared invalid or unenforceable, the remaining provisions of this Agreement shall remain in effect. Any notice to CBT under this Agreement shall be delivered by U.S. certified mail, return receipt requested, or by overnight courier to CBT Nuggets at the following address: 44 Club Rd Suite 150, Eugene, OR 97401 or such other address as CBT may designate.

CBT Nuggets reserves the right, in its sole discretion, to change, modify, add, or remove all or part of the License Agreement at any time, with or without notice.

Billing Agreement

  • By entering into a Billing Agreement with CBT Nuggets, you authorize CBT Nuggets to use automatic billing and to charge your credit card on a recurring basis.
  • You agree to pay subscription charges on a monthly basis, under the following terms and conditions:
    • CBT Nuggets will periodically charge your credit card each monthly billing cycle as your subscription charges become due;
    • All payments are non-refundable and charges made to the credit card under this agreement will constitute in effect a "sales receipt" and confirmation that services were rendered and received;
    • To terminate the recurring billing process and/or arrange for an alternative method of payment, you must notify CBT Nuggets at least 24 hours prior to the end of the monthly billing cycle;
    • You will not dispute CBT Nugget’s recurring billing charges with your credit card issuer so long as the amount in question was for periods prior to the receipt and acknowledgement of a written request to cancel your account or cancel individual licenses on your account.
  • You guarantee and warrant that you are the legal cardholder for the credit card associated with the account, and that you are legally authorized to enter into this recurring billing agreement.
  • You agree to indemnify, defend and hold CBT Nuggets harmless, against any liability pursuant to this authorization.
  • You agree that CBT Nuggets is not obligated to verify or confirm the amount for the purpose of processing these types of payments. You acknowledge and agree that Recurring Payments may be variable and scheduled to occur at certain times.
  • If your payment requires a currency conversion by us, the amount of the currency conversion fee will be determined at the time of your payment. You acknowledge that the exchange rate determined at the time of each payment transaction will differ and you agree to the future execution of payments being based on fluctuating exchange rates.

CBT Nuggets reserves the right, in its sole discretion, to change, modify, add, or remove all or part of the Billing Agreement at any time, with or without notice.

Cisco CCNP SWITCH 642-813

VLANs: Configuration and Verification

This video is only available to subscribers.
Start your 7-day free trial today.

A free trial includes:

  • Unlimited 24/7 access to our entire IT training video library.
  • Ability to train on the go with our mobile website and iOS/Android apps.
  • Note-taking, bookmarking, speed control, and closed captioning features.

Welcome to Cisco Switch: Watch Me First!

The Switches Domain: Core Concepts and Design

VLANs: Configuration and Verification

00:00:00 - VLANs, configuration and verification.
00:00:04 - Well, we've walked into the first of the major topics of the
00:00:08 - BCMSN video series and that is VLANs. These things define the
00:00:13 - fabric of just about every enterprise network that you can find
00:00:17 - in the world today. They are the separator that divides a network
00:00:22 - into multiple broadcast domains Before we get too deep into VLANs
00:00:26 - and trunking and all the different technologies I thought I'd
00:00:29 - start off with a simple video explaining the foundations of VLANs,
00:00:33 - what they are, why you would use them, and some design and focusing
00:00:37 - on Cisco's recommendation of using local VLANs. The last thing
00:00:41 - we'll talk about in here is VLAN configuration. We'll jump into
00:00:45 - a live interface, talk about set up on Cisco switches and assign
00:00:50 - ports to them.
00:00:53 - Just to make sure we're all on the same sheet of music, I'd like
00:00:56 - to do a little review of the VLAN foundations. What are VLANs?
00:01:02 - By default, a Cisco switch sends a broadcast everywhere, right?
00:01:06 - Every switch does. That's what switches do. But when we set up
00:01:10 - VLANs, the broadcast traffic is restrained to the VLAN that it
00:01:16 - was received in. So, for example, you can see on the screen I've
00:01:19 - got the blue VLAN and the red VLAN. If the computer sends a broadcast,
00:01:23 - it only comes out the blue ports. Computer sends a broadcast.
00:01:27 - It comes out the red ports. That's known as separate broadcast
00:01:30 - domains. We've completely divided those switches up. Now, with
00:01:35 - that being said, as a side note, we've got these blue computers
00:01:39 - and red computers sending broadcasts. If that's the case, then
00:01:41 - what VLAN port does that belong to? You probably guessed it.
00:01:47 - All VLANs. If the broadcast is going to go out all these ports
00:01:51 - then these ports, this white port, and this is a magic port that
00:01:55 - has two things connected to it, but you get the point. Those
00:01:59 - ports send all VLAN traffic and Cisco calls those a trunk port.
00:02:05 - Now, I will mention if you jump out of the Cisco world into any
00:02:09 - other vendor, whether it's 3Com or HP, they actually define those
00:02:13 - ports as tagged ports. So when you're thinking about tagged ports
00:02:18 - and trunk ports, they're kind of equivalent in those two words.
00:02:21 - So with that in mind, setting up VLAN helps you manage your network
00:02:27 - to really divide it into logical groups. We talked a little bit
00:02:31 - about this in the first video that opened this whole series.
00:02:34 - Now, these VLANs are correlated directly to a subnet. It is a
00:02:38 - one to one correlation. So every VLAN that you create needs its
00:02:43 - own subnet assigned to it. These VLANs can be used for access
00:02:48 - control to prevent the blue users from reaching the red users.
00:02:51 - They can be used for quality of service to say, well, the blue
00:02:55 - VLAN gets better treatment than the red VLAN and they get more
00:02:58 - priority of the bandwidth. And they can be just used for a great
00:03:02 - network design. You won't walk into any modern network that has
00:03:07 - a large campus environment that is not using VLANs. They are,
00:03:10 - how do you like that? You won't walk into any network with technology
00:03:15 - from this year and beyond and the routers and just about everybody.
00:03:19 - Let me put it that way uses VLANs. They are a great network design
00:03:24 - and make it very easy to manage large campus environments.
00:03:28 - When you are setting up VLANs in your network, Cisco recommends
00:03:33 - that you design them through a concept called local VLANs. All
00:03:37 - that means is that the VLANs are constrained to a specific switch
00:03:41 - block. Now, in the opening video to this whole series we talked
00:03:44 - about the enterprise composite network model, remember. And one
00:03:48 - of the things we talked about there was how we're supposed to
00:03:50 - design our network in these groups, this access layer, distribution
00:03:54 - layer, and up here is our core layer devices that really separate
00:03:59 - the major sections of our network. It could be done by buildings.
00:04:02 - It could be done by major departments. It could be done by technology.
00:04:05 - For example, over here I have the server block and the user blocks.
00:04:09 - Inside of the server block I have VLAN 10, 11 and 12 that maybe
00:04:14 - divide up my servers, and I've got the e mail servers in one
00:04:17 - VLAN, Web servers and so on. And then over on the right I've
00:04:20 - got user blocks, maybe the counting and sales department are
00:04:24 - VLAN 14 and 15. By keeping those VLANs constrained to the switch
00:04:31 - network, meaning their switch block, I've created local VLANs.
00:04:35 - And that's good, because now I can implement routing to get to
00:04:38 - the other destinations. If these guys want to reach the servers,
00:04:42 - no worries, I can just route them through the core using my routing
00:04:45 - table, but these all remain routed links. Because we don't want
00:04:52 - a broadcast traffic going through the core and hitting other
00:04:55 - areas of our network.
00:04:57 - These local VLANs should be created around the physical boundaries.
00:05:02 - And usually we don't think about things in physical terms anymore,
00:05:07 - because VLANs are completely logical. But they should really
00:05:10 - be created physically speaking with switches that are directly
00:05:14 - connected. You directly connect access layers to a distribution
00:05:18 - layer. Directly connect distribution layers to core layers. Those
00:05:21 - are your boundaries that should contain your local VLANs. The
00:05:26 - point is to put it simple, we shouldn't have VLANs that go through
00:05:30 - the core. They should remain at the distribution layer and stop
00:05:34 - there. Well, I'm ready. Let's get into the VLAN configuration.
00:05:39 - Just the base setup of VLANs on our switch. And logged into a
00:05:43 - Cisco switch right now, I'm going to type in show VLAN, and just
00:05:47 - take a look at what VLANs I have on the switch by default. Now,
00:05:50 - you can see VLAN 1 right there the default VLAN has all 20 well,
00:05:55 - 23 ports assigned to it. You can see one through 23. This is
00:05:59 - a 24 port switch and I'll talk about where port 24 is in just
00:06:03 - a moment. But below that I have 1,002, three, four, and five
00:06:08 - VLANs which are not something that we created. They're on there
00:06:11 - by default. Those are in order for Cisco to be an industry compliant
00:06:17 - vendor, they had to have those VLANs, just because the industry
00:06:21 - standards said you should. Notice it says active but unsupported,
00:06:24 - because this switch doesn't have FITI interfaces or token rings.
00:06:28 - Obviously this is an older standard but they're there by default.
00:06:32 - All other VLANs we can create. Now, there's two ways to create
00:06:37 - VLANs. An old way and a new way. I'll show you the old way first.
00:06:42 - We can do that by typing from privileged mode, and that's where
00:06:45 - it's kind of funny because we don't start from global config.
00:06:48 - You can type in VLAN database. Now, a little paragraph comes
00:06:51 - up that in short says Cisco's saying this is a mode we used to
00:06:54 - like but now we don't like it so we're making it go away in future
00:06:58 - versions of the software that's being deprecated. So this mode
00:07:03 - is eventually going away but this is the only mode that many
00:07:06 - people know. You go into VLAN database and underneath here you
00:07:10 - can just type in VLAN 100. Followed by name. We'll say IT.
00:07:17 - VLAN 200.
00:07:20 - We name it sales. Jump back here. VLAN 200. And so on. Now, this
00:07:25 - mode and I think one of the reasons why Cisco's trying to make
00:07:28 - it go away, it's very quirky, in the sense that
00:07:33 - how do you usually exit from modes? Control Z, right? Some of
00:07:38 - you are thinking: Type in exit. Most people hit control Z. If
00:07:42 - you hit control Z to jump out of this mode it actually undoes
00:07:46 - everything that you did. It's funny. So when I get out, I have
00:07:51 - to type in exit. And that's where you get this message Apply
00:07:55 - Completed. Now when I type in show VLAN I can see default VLAN,
00:07:59 - IT and sales. So I've created those two VLANs. With the old way
00:08:03 - out of the way, let me show you the Cisco preferred way. I go
00:08:07 - into global config mode and type in VLAN, say a number. We'll
00:08:11 - say 300.
00:08:13 - Name. Marketing.
00:08:17 - You actually go into this VLAN sub configuration mode and name
00:08:20 - it. You exit back out and do VLAN 400. Name, management.
00:08:28 - Management. Exit out. Show VLAN and you can see that sure enough
00:08:33 - we've added more VLANs to our switch that are available. But
00:08:37 - no ports have been assigned. So to assign ports I go into global
00:08:42 - config mode, and I'll just assign the first 10 port. I'll type
00:08:44 - in interface. Actually, first 10 ports, let's do interface range.
00:08:49 - Fast ethernet 0/1 through 10. And I'll do first command switch
00:08:54 - port mode access. Now, let me type the whole command. That command
00:09:00 - configures this to be hard coded as an access port. You don't
00:09:05 - have to do it, but it's very important that you do. Because otherwise
00:09:09 - it's in a mode known as dynamic, where it will be trying to negotiate
00:09:13 - a trunk port with the other side. That, by the way, is a horrible
00:09:17 - security vulnerability to leave your ports in dynamic mode. You
00:09:21 - want to either hard code them as access ports or trunk ports.
00:09:25 - We'll talk about that more in the upcoming video. Actually, it's
00:09:28 - coming up next where we discuss everything trunking. So we've
00:09:32 - set these to access ports, which means an end device attaches
00:09:35 - to them. Then I'll follow that up with switch port access VLAN
00:09:39 - and let's throw these guys in 100, they're the IT ports. Do interface
00:09:43 - range. Fast ethernet. We'll say 11 through 15. Switch port mode
00:09:48 - access and switch port access VLAN 200. When I jump out, I'll
00:09:52 - do a show VLAN and I can see that I have a status message splicing
00:09:57 - up my beautiful output. You can see the IT ports. Whoop.
00:10:02 - Right there. With a group of ports underneath it or the ITVLAN.
00:10:07 - Then I have the sales VLAN with a group of ports underneath it.
00:10:11 - At this point I have completely segmented my switch. The sales
00:10:15 - ports cannot reach the IT ports which cannot reach the default
00:10:19 - VLAN. They are totally separate, a broadcast in those VLAN stays
00:10:23 - in those VLANs. So that is how we create VLANs and assign ports
00:10:28 - to them. Now, the last thing I'll talk about, this is a short
00:10:32 - video, just on creating VLANs, is where these VLANs are stored.
00:10:37 - This is a little odd. But Cisco decided not to store the VLANs
00:10:42 - in the running config. I'll do a show run and do a little scrolling
00:10:46 - down. And I can see that there's my spanning tree. All my commands
00:10:51 - I typed under my interfaces.
00:10:53 - And interface VLAN one console port nothing. Nothing about VLANs
00:10:57 - is in the running config. It's all stored in a file in flash
00:11:03 - called VLAN.dat.
00:11:05 - You can see the file right there on the bottom. The VLAN database
00:11:09 - file holds all the VLANs that we created and their proper names.
00:11:13 - That is a little bit irksome I'll say. I'm trying to think of
00:11:19 - the right work. Irksome will do for now. Because you think you
00:11:23 - clear out your switch. Let's say you erase the config by doing
00:11:26 - a write erase, or erase startup config and you think you wipe
00:11:29 - out the config, but when you reboot you'll still see all those
00:11:32 - VLANs there. That can be an issue when we start getting into
00:11:38 - topics like VTP because it may accidently propagate those VLANs
00:11:42 - when you don't intend. However,
00:11:45 - when you are properly clearing a switch out, you're erasing its
00:11:49 - configuration, don't forget not only to do a write erase, which
00:11:54 - erases the start up config, but also do a delete/colon
00:11:59 - VLAN.dat. By doing that, that is the only way that you can erase
00:12:05 - your VLANs. I'll do a show VLAN.
00:12:08 - And you can see that they're still there. You might be thinking
00:12:11 - well Jeremy I thought you just deleted it. They are memory resident.
00:12:14 - They're sitting in RAM. So we have to reboot this switch. Just
00:12:18 - power it off and power it back on before those VLANs go away.
00:12:21 - So my point in telling you that, this is especially valuable
00:12:24 - when we get to VTP, when you're clearing a switch, don't forget
00:12:28 - to erase the VLANs or erase the VLAN database file.
00:12:33 - And that's about all I have to say about that. So let's wrap
00:12:36 - up VLANs. This has been the opening video on just creating VLANs.
00:12:41 - Modifying ports, assigning them to VLANs. We talked about first
00:12:45 - off VLAN foundations, what VLANs are. We then got into the VLAN
00:12:49 - design, which primarily deals with local VLANs. Cisco wants you
00:12:54 - to make sure that you keep your VLANs constrained to the switch
00:12:58 - block so they don't go through the core of your network. Last
00:13:02 - thing we got into was the VLAN configuration. Walking through
00:13:05 - first off creating the VLANs from either VLAN database or global
00:13:08 - config mode. Then assigning your access ports to them. I hope
00:13:13 - this has been informative for you and I'd like to thank you for viewing.

VLANs: In-Depth Trunking

VLANs: VLAN Trunking Protocol

STP: Foundation Per-VLAN Spanning Tree Concepts, Part 1

STP: Foundation Per-VLAN Spanning Tree Concepts, Part 2

STP: Rapid Spanning Tree Concepts and Configuration

EtherChannel: Aggregating Redundant Links

L3 Switching: InterVLAN Routing Extraordinaire

L3 Switching: Understanding CEF Optimization

Redundancy in the Campus: HSRP, VRRP, and GLBP Part 1

Redundancy in the Campus: HSRP, VRRP, and GLBP Part 2

Campus Security: Basic Port Security and 802.1x

Campus Security: VLAN and Spoofing Attacks

Campus Security: STP Attacks and Other Security Considerations

Campus VoIP: Overview, Considerations, and AutoQoS

Wireless LAN: Foundation Concepts and Design Part 1

Wireless LAN: Foundation Concepts and Design Part 2

Wireless LAN: Frequencies and 802.11 Standards

Wireless LAN: Understanding the Hardware

The Switches Domain: Additional Life-Saving Technology

Monitoring: Your Pulse on the Network

Campus Security: VACLs

This forum is for community use – trainers will not participate in conversations. Share your thoughts on training content and engage with other members of the CBT Nuggets community. For customer service questions, please contact our support team. The views expressed in comments reflect those of the author and not of CBT Nuggets. We reserve the right to remove comments that do not adhere to our community standards.

comments powered by Disqus
Community Standards

We encourage you to share your wisdom, opinions, and questions with the CBT Nuggets community. To keep things civil, we have established the following policy.

We reserve the right not to post comments that:
contain obscene, indecent, or profane language; contain threats or defamatory statements; contain personal attacks; contain hate speech directed at race, color, sex, sexual orientation, national origin, ethnicity, age, religion, or disability; contributes to a hostile atmosphere; or promotes or endorses services or products. Non-commercial links, if relevant to the topic, are acceptable. Comments are not moderated, however, all comments will automatically be filtered for content that might violate our comment policies. If your comment is flagged by our filter, it will not be published.

We will be continually monitoring published comments and any content that violates our policies will be removed. Users who repeatedly violate our comments policy may be prohibited from commenting.

Course Features

Speed Control

Play videos at a faster or slower pace.


Pick up where you left off watching a video.


Jot down information to refer back to at a later time.

Closed Captions

Follow what the trainers are saying with ease.

MP3 Downloads

Listen to videos anytime, anywhere

Annual Course Features

Transcender Practice Exams

These practice tests help you review your knowledge and prepare you for exams.
Available only with the annual subscription.
Jeremy Cioara

Jeremy Cioara

CBT Nuggets Trainer

Cisco CCNA, CCDA, CCNA Security, CCNA Voice, CCNP, CCSP, CCVP, CCDP, CCIE R&S; Amazon Web Services CSA; Microsoft MCP, MCSE, Novell CNA, CNE; CompTIA A+, Network+, iNet+

Area Of Expertise:
Cisco network administration and development. Author or coauthor of numerous books, including: CCNA Voice 640-461 Official Cert Guide; CCNA Voice Official Exam Certification Guide (640-460 IIUC); CCENT Exam Prep (Exam 640-822); CCNA Exam Cram (Exam 640-802) 3rd Edition; and CCNA Voice 640-461 Official Cert Guide.

Add training to a playlist
or create a new list
Add to current playlist
or add to an existing list
Add to new playlist
Add New Bookmark

VLANs: Configuration and Verification
Bookmark Title:

Login is required to access this feature.

Your browser cannot access Virtual Labs
Video Options

This advanced buffering is applied to all streams regardless if you installed the doublespeed control or not. Sometimes the advanced buffering causes the video to hang or behave erratically. If you are experienceing issues with video playback please disable the doublespeed buffer.

Remember to re-enable the buffer if you want to use the doublespeed control.

If you are experiencing problems with our content delivery, please click here to switch to our alternate content delivery network or go to our network FAQ.
For other common video playback issues, including firewall and corporate network issues, please visit our Tech Support forum.