Skip to content
Network as Code

Layer 2 Virtual Network

Location in GUI: Provision » SD-Access » Virtual Networks » Layer 2 Virtual Networks

Diagram

Section titled “Diagram”
Diagram

Classes

Section titled “Classes”

fabric_sites (catalyst_center.fabric)

Section titled “fabric_sites (catalyst_center.fabric)”
NameTypeConstraintMandatoryDefault Value
l2_virtual_networksList[l2_virtual_networks]No

l2_virtual_networks (catalyst_center.fabric.fabric_sites)

Section titled “l2_virtual_networks (catalyst_center.fabric.fabric_sites)”
NameTypeConstraintMandatoryDefault Value
nameStringYes
vlan_nameStringNo
vlan_idIntegermin: 2, max: 4093No
traffic_typeChoiceDATA, VOICENo
fabric_enabled_wirelessBooleantrue, falseNo
associated_l3_virtual_networkStringNo

Examples

Section titled “Examples”

Example-1: Basic Layer 2 Virtual Network for Data Traffic

This example demonstrates how to configure a basic Layer 2 virtual network within an SD-Access fabric site. Layer 2 virtual networks enable VLAN extension across the fabric while maintaining traditional Layer 2 networking semantics for applications and services that require Layer 2 adjacency.

The Layer 2 virtual network configuration includes:

  • Virtual network name (L2_SDA_VN_1) for identification and policy assignment
  • VLAN name (L2_VLAN_USERS) for traditional VLAN-based network segmentation
  • VLAN ID (501) for 802.1Q tagging and network isolation
  • Traffic type specification (DATA) for appropriate QoS and policy treatment
  • Fabric-enabled wireless disabled for wired-only network segments
catalyst_center:
  fabric:
    fabric_sites:
      - name: Global/Canada
        authentication_template:
          name: No Authentication
        l2_virtual_networks:
          - name: L2_SDA_VN_1
            vlan_name: L2_VLAN_USERS
            vlan_id: 501
            traffic_type: DATA
            fabric_enabled_wireless: false

Example-2: Layer 2 Virtual Network with Wireless Integration

This example shows how to configure a Layer 2 virtual network with fabric-enabled wireless support for unified wired and wireless connectivity. This configuration enables seamless Layer 2 extension across both wired and wireless infrastructure within the SD-Access fabric.

catalyst_center:
  fabric:
    fabric_sites:
      - name: Global/North America/Corporate Campus
        authentication_template:
          name: Closed Authentication
        l2_virtual_networks:
          - name: CORPORATE_L2_NETWORK
            vlan_name: CORPORATE_USERS
            vlan_id: 100
            traffic_type: DATA
            fabric_enabled_wireless: true

Example-3: Multiple Layer 2 Virtual Networks for Traffic Segmentation

This example demonstrates how to configure multiple Layer 2 virtual networks within a single fabric site for comprehensive traffic segmentation. Different traffic types require isolated Layer 2 domains for security, performance, and compliance requirements.

catalyst_center:
  fabric:
    fabric_sites:
      - name: Global/Europe/ManufacturingPlant
        authentication_template:
          name: Closed Authentication
        l2_virtual_networks:
          - name: PRODUCTION_L2_VN
            vlan_name: PRODUCTION_CONTROL
            vlan_id: 200
            traffic_type: DATA
            fabric_enabled_wireless: false
          - name: IOT_L2_VN
            vlan_name: IOT_SENSORS
            vlan_id: 300
            traffic_type: DATA
            fabric_enabled_wireless: true
          - name: GUEST_L2_VN
            vlan_name: GUEST_ACCESS
            vlan_id: 400
            traffic_type: DATA
            fabric_enabled_wireless: true

Example-4: Layer 2 Virtual Network for Voice Traffic

This example shows how to configure a Layer 2 virtual network specifically optimized for voice traffic with appropriate QoS treatment and priority handling within the SD-Access fabric.

catalyst_center:
  fabric:
    fabric_sites:
      - name: Global/Asia Pacific/CallCenter
        authentication_template:
          name: Closed Authentication
        l2_virtual_networks:
          - name: VOICE_L2_VN
            vlan_name: VOICE_TRAFFIC
            vlan_id: 150
            traffic_type: VOICE
            fabric_enabled_wireless: true

Example-5: Layer 2 Virtual Network for Legacy System Integration

This example shows how to configure Layer 2 virtual networks for integrating legacy systems that require specific VLAN configurations and Layer 2 adjacency within the modern SD-Access fabric infrastructure.

catalyst_center:
  fabric:
    fabric_sites:
      - name: Global/Europe/Legacy_Data_Center
        authentication_template:
          name: Closed Authentication
        l2_virtual_networks:
          - name: LEGACY_MAINFRAME_L2_VN
            vlan_name: MAINFRAME_ACCESS
            vlan_id: 999
            traffic_type: DATA
            fabric_enabled_wireless: false
          - name: LEGACY_STORAGE_L2_VN
            vlan_name: STORAGE_NETWORK
            vlan_id: 998
            traffic_type: DATA
            fabric_enabled_wireless: false