了解使用 Virtual 網路與 VlanUnderstanding Usage of Virtual Networks and VLANs

適用於:Windows Server(以每年次管道)、Windows Server 2016Applies To: Windows Server (Semi-Annual Channel), Windows Server 2016

您可以使用本主題以深入了解 HYPER-V 網路模擬 Virtual 網路,以及如何有所不同區域網路 (Vlan)。You can use this topic to learn about Hyper-V Network Virtualization Virtual Networks and how they differ from virtual local area networks (VLANs).

軟體定義網路 (SDN) 在 Windows Server 2016 中根據程式設計覆疊 virtual 網路 Virtual 切換 HYPER-V 中的原則。Software Defined Networking (SDN) in Windows Server 2016 is based on programming policy for overlay virtual networks within a Hyper-V Virtual Switch. 您可以建立覆疊 virtual 網路,也稱為 Virtual 網路,HYPER-V 網路模擬。You can create overlay virtual networks, also called Virtual Networks, with Hyper-V Network Virtualization.

當部署 HYPER-V 網路模擬時,會建立覆疊網路封裝覆疊-或通道-標題 (例如,VXLAN 或 NVGRE) 和層級 3 IP 和層級 2 乙太網路標頭底圖 (或實體) 從網路與原始承租人一樣的層級 2 乙太網路畫面。When you deploy Hyper-V Network Virtualization, overlay networks are created by encapsulating the original tenant virtual machine's Layer-2 Ethernet frame with an overlay - or tunnel - header (for example, VXLAN or NVGRE) and Layer-3 IP and Layer-2 Ethernet headers from the underlay (or physical) network. 覆疊網路 virtual 都會來 24 元 Virtual 網路識別碼 (VNI) 維護承租人流量隔離,並允許重疊的 IP 位址。The overlay virtual networks are identified by a 24-bit Virtual Network Identifier (VNI) to maintain tenant traffic isolation and to allow overlapping IP addresses. VNI 組成 virtual 子網路 ID (VSID)、 邏輯切換 ID 和通道 id。The VNI is composed of a virtual subnet ID (VSID), logical switch ID, and tunnel ID.

此外,每個承租人,以便在多個 (每個由 VNI) 的 virtual 子網路首碼直接傳送彼此指派路由網域 (類似 virtual 路由並轉接-VRF)。Additionally, each tenant is assigned a routing domain (similar to virtual routing and forwarding - VRF) so that multiple virtual subnet prefixes (each represented by a VNI) can be directly routed to each other. 跨-承租人 (或跨路由網域) 而不需透過閘道路由不支援。Cross-tenant (or cross routing domain) routing is not supported without going through a gateway.

使用的通道每個承租人的封裝的流量之實體網路會以邏輯網路稱為邏輯網路提供者。The physical network on which each tenant's encapsulated traffic is tunneled is represented by a logical network called the provider logical network. 這提供者邏輯網路包含了一或多個子網路,每由 IP 首碼,或者,VLAN 802.1q 標記。This provider logical network consists of one or more subnets, each represented by an IP Prefix and, optionally, a VLAN 802.1q tag.

您可以建立其他邏輯網路且子網路基礎結構用途以執行管理傳輸,儲存的資料傳輸移轉流量等。You can create additional logical networks and subnets for infrastructure purposes to carry management traffic, storage traffic, live migration traffic, etc.

Microsoft SDN 不支援使用 Vlan 隔離的承租人網路。Microsoft SDN does not support the isolation of tenant networks by using VLANs. 承租人隔離被透過僅使用 HYPER-V 網路模擬覆疊網路 Virtual 和封裝。Tenant isolation is accomplished solely by using Hyper-V Network Virtualization overlay Virtual Networks and encapsulation.