Description

This article describes how to manage a VLAN in a MCP 2.0 Data Center location, including:


For instructions on how to Expand a VLAN, see How to Expand a VLAN on a Network Domain in a MCP 2.0 Data Center

Recommended reading: Introduction to IP Addressing in MCP 2.0

Prerequisites:

  1. Only the Primary Administrator or a User with the Network role can manage VLANs.
  2. VLANs are only available in MCP 2.0 Data Center locations. For an overview, see Understanding MCP 1.0 vs. MCP 2.0 Data Center Locations.
  3. Must have deployed a Network Domain. See How to Deploy a Network Domain in a MCP 2.0 Data Center Location.
  4. Must have deployed a VLAN. See How to Deploy a VLAN on a Network Domain in an MCP 2.0 Data Center.
  5. No IP addresses can be "in use" on a VLAN, including use by a Cloud Server NIC, NAT Internal IP address, and Node
  6. No IP addresses can be "exclusively reserved" on a VLAN. For details, see:
    1. How to View the IP Addresses Currently In Use and/or Exclusively Reserved on a VLAN
    2. How to Unreserve an IPv4 or IPv6 Address.
  7. When the VLAN is an attached VLAN, you CANNOT provide either the IPv4 Gateway Address or the IPv6 Gateway Address
    1. However, when a VLAN is a Detached VLAN you CAN edit IPv4 Gateway Address or the IPv6 Gateway Address
  8. When detaching a VLAN you MUST provide an IPv4 Gateway Address
    1. The IPv4 Gateway Address can be ANY valid IPv4 address (i.e. it does NOT have to be on the VLAN range) except:
      1. The Network Address (x.x.x.0) at the start of the range of the Detached VLAN being edited 
      2. The Broadcast Address (x.x.x.255) at the end of the range of Detached VLAN being edited
    2. The IPv6 Gateway Address can be ANY valid IPv6 address (i.e. it does NOT have to be on the VLAN range) except:
      1. The first address (::0) in the IPv6 VLAN range for which the gateway is being submitted
      2. The 3rd through 32nd Addresses i.e. ::2 through ::19 (remember IPv6 typically uses hexadecimal representation) for which the gateway is being submitted.
      3. For example: If the Network Address for an Attached VLAN is 2607:f480:1111:1415:0:0:0:0, The User is allowed to enter 2607:f480:1111:1415:0:0:0:1 as the IPv6 Gateway Address (this is the same as the "default" value that the system will assign if no input is provided) but 2607:f480:1111:1415:0:0:0:2, 2607:f480:1111:1415:0:0:0:3...2607:f480:1111:1415:0:0:0:19 are not allowed.
      4. The last IPv6 address in the VLAN range is a valid address and can be used

    3. There cannot be any pending SNAT Exclusions

      1. However, you can detach a VLAN if there are Failed SNAT Exclusions

  9. If moving to any form of Attached VLAN:
    1. You CANNOT provide IPv4 Gateway Address or IPv6 Gateway Address inputs
    2. VLAN size cannot be /29 or /30 as these are not allowed for Attached VLAN
      1. You will need to expand the size to at least /28 in order to switch to Attached
    3. If the VLAN size is /25 through /28, the user can only move from Detached to SMALL ATTACHED VLAN:
      1. High Addressing is not permitted
      2. The next three IPv4 addresses after the network address at the start of the range cannot be in use (for one starting at .0, this would be x.x.x.1-x.x.x.3. starting at .16 would be x.x.x.17-x..x.x.19, etc.)
        1. "In Use" for this validation and the validation below fro /16 through /24 means these addresses can't be the following:
          1. Assigned to a NIC
          2. Assigned to a Node
          3. Exclusively Reserved
    4. If VLAN size is /16 through /24:
      1. You can choose HIGH ADDRESSED VLAN (assumed to be LOW ADDRESSED VLAN if not specified)
      2. If moving to LOW ADDRESSED VLAN:
        1. The next five IPv4 addresses after the network address at the start of the range cannot be in use (for one starting at .0, this would be x.x.x.1-x.x.x.5)
      1. If moving to HIGH ADDRESSED VLAN:
        1. The last the three IPv4 addresses at the end of the range before the broadcast address in use the at the top of the VLAN (i.e in the last octet  x.x.x.252-x.x.x.254)
    1. You cannot have a static route referring to address space that "matches" either the IPv4 or IPv6 range of the VLAN
      1. The Network Domain cannot have any Static route where the Destination Network Address and Destination Prefix Size is the same as the VLAN's Private IPv4 Base Address and Private IPv5 Prefix Size
  10. You cannot delete an Attached VLAN if there is any Network Domain Static Route that uses a Next Hop IP Address whose range lies within the VLAN
  11. You cannot have a Node on a VLAN while it is being either Attached or Detached.
    1. Note you CAN have nodes on Attached or Detached VLANs, but the Node cannot be present while switching between the Attached and Detached states.
  12. Cannot attach non-RFC 1918 Detached VLAN if there is a CLIENT IPv4 SNAT Exclusion that defines the exact same IP range as the VLAN
    1. attaching a VLAN that is either bigger or smaller is allowed
  13. Cannot attach a non-RFC 1918 Attached VLAN if the Network Domain already has 100 IPv4 SNAT Exclusions (Client + System in the aggregate)

Content / Solution:

How to View your VLAN(s)

  1. From the Home page, click on the MCP 2.0 Data Center location where the VLAN you want to manage is located:


  2. The Data Center dashboard will be displayed. Click on the Network Domain where the VLAN you want to manage is located:


  3. From the Network Domain dashboard, click on the VLANs and Servers tab:
     

How to Edit a VLAN

  1. Click on the manage gear for the VLAN that you want to edit, then select Edit VLAN from the drop-down menu:


  2. The Edit VLAN dialog will be displayed:

    Note: If the VLAN is a Detached VLAN, you can edit the IPv4 Gateway Address and the IPv6 Gateway Address. This is specific to Detached VLANs.
    You cannot edit the IPv4 or IPv6 Gateway Address of an Attached VLAN.


  3. Once you have made the desired changes, click the Save button:


  4. The system will display a success message:


  5. The system will update the VLAN with the desired changes:

    Note: The IPv4 and IPv6 Ranges will remain constant.

    For instructions on how to Expand a VLAN, see How to Expand a VLAN on a Network Domain in a MCP 2.0 Data Center

How to Detach a VLAN

  1. Click on the manage gear for the VLAN that you want to detach, then select Detach VLAN from the drop-down menu:


  2. The Detach VLAN dialog will be displayed:


  3. Fill out the form with the desired information, then click Detach VLAN:

    • IPv4 Gateway Address - The IPv4 address used by the VLAN to communicate with the internet. This value is required
    • IPv6 Gateway Address - The IPv6 address used by the VLAN to communicate with the internet. This value is optional
      • Note: The system reserves the first 32 IPv6 addresses in a VLAN. These are not available for use

  4. The system will detach the VLAN and you will notice that the VLAN now has the Detached VLAN icon:

How to Attach a VLAN

  1. Click on the manage gear for the VLAN that you want to attach, then select Attach VLAN from the drop-down menu:


  2. The Attach VLAN Dialog will be displayed. Click Attach VLAN:


  3. The system will attach the VLAN:

How to Delete a VLAN

  1. From the Network Domain dashboard, click on the manage gear for the VLAN that you want to delete, then select Delete VLAN from the drop-down menu:


  2. The Delete VLAN dialog will be displayed. Click Delete:

    Note: All NICs must be removed from the VLAN before it can be deleted, otherwise you will receive the below error:

    Note: All IP Addresses (IPv4 and IPv6) must be unreserved before a VLAN can be deleted, otherwise you will receive the below error:

     

  3. The system will display a message indicating that the operation is in progress:


  4. The system will indicate that the VLAN is being deleted:


  5. Once complete, the system will display a success message:

    Note: You must also unreserve all IPv4 and IPv6 Addresses before you can delete a VLAN. see How to Unreserve an IPv4 or IPv6 Address.
     
  6. The VLAN will be deleted and the UI will be updated to reflect the change: