How to Create Global and Island VLANs

---

The Policy tab VLANs left-panel tab used for access control are displayed in the Access Control Configuration window. If you have enabled the Policy VLAN Islands feature, there are two tabs in the VLANs tab: Global VLANs and Policy VLAN Islands . Otherwise, only the Global VLANs folder is displayed. For more information on Policy VLAN Islands, see How to Create a Policy VLAN Island.

The Policy tab provides you with one Global Default VLAN, available when you first access the Policy tab. You can create additional VLANs by selecting the Create VLAN option available when you right-click on the Global VLANs tab.

Once a VLAN is created, you can use it as follows:

• as the default access control for a role, using the role General tab.
• as an access control action for a rule using the Rule tab.
• as an access control action for an automated service, using the Automated Service tab.
• in a Policy VLAN Island, if that feature is enabled.

See Create VLAN Window and Roles for additional information.

Instructions on:

• Creating a VLAN
• Editing an Island VLAN ID
• Deleting a VLAN

Creating a VLAN

1. Open the Policy tab.
2. Select the left-panel VLANs > Global VLANs tab.
3. Right select the Global VLANs tab and select Create VLAN from the menu.
4. Fill out the Create VLAN Window to your specifications.
5. Select OK to create the VLAN and close the Create VLAN window.
6. Enforce to write the new information to the devices.

Editing an Island VLAN ID

1. Open the Policy tab.
2. Expand the VLANs > Policy VLAN Islands left-panel tab.
3. Select the VLANs tab in the right panel.
4. Select the VLAN with which the policy VLAN island is associated in the VLANs section of the window.
5. Select the Island VLAN in the VLAN Settings section of the window and select Edit Island VID.
6. Enter the new VLAN ID and select OK.
7. Enforce to write the new information to the devices.

Deleting a VLAN

Deleting a VLAN removes it and its associations with any roles and services from the NetSight database and from the devices.

	WARNING:	The delete operation immediately removes the VLAN(s) from the devices in the Devices tab and could result in serious consequences if the VLANs are used outside the scope of the Policy tab.

1. Open the Policy tab and select the VLANs left-panel tab.
2. Expand the Global VLANs left-panel tab.
3. Right-click on the VLAN you wish to delete and select Delete from the menu. A confirmation window opens.
4. Select Yes to delete the VLAN.
5. Enforce to write the new information to the devices.

---

Related Information

For information on related help topics:

• Dynamic Egress
• Policy VLAN Islands
• Create VLAN Window
• General Tab (Role)