ExtremeCloud IQ Instant Port

Instant Port enables you to automate your access layer by dynamically assigning VLANs based on the end devices MAC and/or LLDP capabilities. This document will cover the configuration of instant port and show an example.

 


Configuration of Instant Port is simple. First, create an Instant Port Profile within your network policy then assign that profile to your Switch Template.

 

·         The Non-Forwarding VLAN will be used by default to learn the MAC and LLDP capabilities of the end device.

·         The Default Port Type will be used if you wish to provide non-matching devices layer two connectivity.

·         You can choose whether to allow non-matching devices to use either the Default Port Type or the Non-Forwarding VLAN. By using the Non-Forwarding VLAN, unknown devices will be dropped in an unused VLAN without the ability to reach other devices on the network or the internet.


Under “Device Types” you can create a list of the devices you know will exist on your network. In this case, I know the MAC OUI of the printers I expect to connect to the LAN and that I will have wireless access points connecting. In this example, I want printers to get dropped into VLAN 1, and access points into Untagged 1 Tagged 10,20,30 for my client VLANs.

 

 


Now assign the instant port profile to the Switch Template and to each port you want it enabled. Instant port does not have to be enabled on each port, if you wish to statically set the VLAN configuration on any specific ports.

 

 

 


In this example, when a printer is connected to any port, the switch will automatically check if the MAC OUI matches the Instant Port rule, then provision the correct VLAN. When a Wireless Access Point is connected, it will listen for the LLDP capabilities, and automatically provision the corrected Tagged and Untagged VLANs. If a device is connected and does not match either rule, it gets dropped into the Non-Forwarding VLAN I configured, in this case VLAN 999.

 


Devices that do not match any rule will be stuck in the non-forwarding VLAN; 999:



Link to video demo: https://youtu.be/cGRNUCoWVrw?si=_R7a0u0nAiaK-w7G

Comments

Popular posts from this blog

Following Design Processes

Hamina Crash Course Video