VLANs offer many benefits not found in typical LANs, some of which are listed below.
Performance Enhancements: Since broadcast frames are targeted and processed by all devices, creating smaller domains can reduce overhead and limit resource utilization. Only those workstations in need of receiving specific broadcast or multicast traffic can exist on the domain, preventing other devices from receiving unnecessary traffic. The use of VLANs to create broadcast domains also eliminates the need for routers to handle this function, permitting operation at lower latencies compared to routers under heavy load.
Workgroups: A VLAN can be created to accommodate groups of users who will be communicating among themselves at high volume, reducing the impact on all other workstations. These user workstations do not have to be physically moved or located near one another, since the workgroup is virtual and created within the switching software. Of course, some shared devices such as printers or scanners require physical access, and their placement may pose a challenge if workgroup clients are located in different buildings.
Another challenge when creating workgroups is the location and physical architecture of servers, which may be centralized in a single area for security and backup purposes. If servers cannot be placed on more than one VLAN, a router would be required to allow other VLANs to access the server resources, adding overhead and expense.
Ease of Administration: Much of the cost associated with network additions and relocations can be saved through the use of VLANs. Workstations can be shifted from one workgroup or department to another without installing new network cabling and reconfiguring hubs or routers. At the same time, the advantages of software administration are somewhat offset by the complexities of managing and maintaining the virtual workgroups.
Information Security: VLANs can be used to create secure user groups and prevent others outside of the broadcast domain from receiving sensitive data. They can also be used to enhance firewall functions and restrict network access for one or more users.
Provided by Enterprise Networks and Servers.
