Differents vlan types :
- Promisicous/primary : a port/vlan that could communicate to all other private vlan associated with.
- Community : a port/vlan that could communicate with each other and with primary associated with.
- Isolated : a port/vlan that could communicate with primary associated with only.
A primary port can contains one isolted vlan and multiple communities vlan
Configuration
- Create the differents vlan
vlan 10
private-vlan primary
vlan 20
private-vlan community
vlan 30
private-vlan isolated
-Associate the vlan with a primary vlan
vlan 10
private-vlan association 10,20
Configure interface
On the following example,
- port 21 & 22 could communicate with each other and with port 1
- port 31 & 32 could not communicate with each other but could with port 1
- Port 1 could communicate with port 21,22,31,32
int f0/1
switchport mode private-vlan promiscious
switchport private-vlan mapping 10 add 20 30
int range f0/21-22
switchport mode private-vlan host
switchport private-vlan host-association 10 20
int range f0/31-32
switchport mode private-vlan host
switchport private-vlan host-association 10 30
Inscription à :
Publier les commentaires (Atom)
Aucun commentaire:
Enregistrer un commentaire