VLANs Definition

Going to ON CMDB -> VLANs as shown by the step 1 is possible to register all the VLANs that exist in the network where openNAC technologies are being deployed.

To register a new VLAN follows the step 2 pressing the button “Add new

../../../_images/oncmdbvlans.PNG

Going to ON CMDB -> VLANs as shown by the Step 1 is possible to register a VLAN with VLAN ID 100.

Assign a VLAN name, in this case SERVICE name is used as shown by the step 2

Assign and VLAN type is required as shown by the step 3:

Service: A service VLAN is usually a given name for VLAN to provide access to service.

Registry: A Registry VLAN is usually a given name or VLAN used to provide access to registry before network access, Captive portal (Guest and external collaborators), BYOD use cases..

Quarantine: A Quarantine VLAN usually a given name or VLAN used to send the assets which doesn’t complain with authentication process to access network, this VLAN are normally used to isolate user devices that doesn’t comply security policy or carrying out malicious activities.

Hotspot: A hotspot VLAN is normally used to configured hotspot VLANs

Is also possible to set as default VLAN as shown by step 4, this means that this VLANs becomes the default VLAN for this network.

For instance, if we use the button quarantine in ON NAC -> Business Profiles to send a user device to quarantine network the Quarantine VLAN defined as default will be used.

../../../_images/oncmdbvlans_register.PNG

Going to ON CMDB -> VLANs as shown by the Step 1 is possible to export all information related with the VLANs registered

The information just exported can be edited by your favorite file editor as shown by the step 2.

../../../_images/oncmdbvlans_export.PNG