Private-Vlan (PVLAN)

on Monday, May 21 21 May , in , 0 Comments

Hosts(SWITCH)promiscuous

PRIMARY VLAN:-
-----------------
1)Promiscuous:-
this is associated to Internet facing
Hosts-------to----> promiscuous  ===> WORK
promiscuous---to--->Host          ===> WORK

2)HOST:-
(a)ISOLATED:- in isolated we can only talk to ourselfs

ISOLATED VLAN 10 --to--->ISOLATED VLAN 10 ===> DOESN'T WORKS
ISOLATED VLAN --to--->Promiscuous VLAN===>WORKS

(b)COMMUNITY:-in community we can talk to everyone
COMMUNITY VLAN 10 --to--->COMMUNITY VLAN 10 ===>WORKS
COMMUNITY VLAN 10 --to--->COMMUNITY VLAN 20 ===> DOESN'T WORKS
COMMUNITY VLAN --to--->Promiscuous VLAN===>WORKS


configuration:-
Primary VLAN=10

#int range f0/1-3 , f0/22 , f0/5 , f0/24 , f0/20
sw mode acc 
sw acc vlan 10

(a)configure community and isolated vlans:-
#vlan 10
     private-vlan primary
#vlan 100
     private-vlan community
#vlan 200
     private-vlan community
#vlan 500
     private-vlan isolated

vlan 10
     private-vlan association add 100,200,500

(b)configure promiscuous vlans:-
int f0/20
     sw mode private-vlan promiscous 
     sw private-vlan association mapping 10 100,200,500
     (sw private-vlan association mapping <primary vlan> <secondary vlan>)

(a)configure community and isolated vlans to its interfaces:-
int range f1/1-2
     sw mode private-vlan host
     sw private-vlan host-association 10 100 
     (sw private-vlan host-association <primary vlan> <secondary vlan>)

int range  f1/3 , f0/22
     sw mode private-vlan host
     sw private-vlan host-association 10 500
     (sw private-vlan host-association <primary vlan> <secondary vlan>)

0 Response to "Private-Vlan (PVLAN)"

Post a Comment

Subscribe to: Post Comments (Atom)
Powered by Blogger