private-vlan
To configure private VLANs and to configure the association between private VLAN primary and secondary
VLANs, use the private-vlan VLAN configuration command on the switch stack or on a standalone switch.
Use the no form of this command to return the VLAN to normal VLAN configuration.
private-vlan {association [add| remove] secondary-vlan-list| community| isolated| primary}
no private-vlan {association| community| isolated| primary}
Syntax Description
Creates an association between the primary VLAN and a secondary VLAN.association
Associates a secondary VLAN to a primary VLAN.add
Clears the association between a secondary VLAN and a primary VLAN.remove
One or more secondary VLANs to be associated with a primary VLAN in
a private VLAN.
secondary-vlan-list
Designates the VLAN as a community VLAN.community
Designates the VLAN as an isolated VLAN.isolated
Designates the VLAN as a primary VLAN.primary
Command Default
The default is to have no private VLANs configured.
Command Modes
VLAN configuration
Command History
ModificationRelease
This command was introduced.Cisco IOS XE 3.3SE
Usage Guidelines
Before configuring private VLANs, you must disable VTP (VTP mode transparent). After you configure a
private VLAN, you should not change the VTP mode to client or server.
VTP does not propagate private VLAN configurations. You must manually configure private VLANs on all
switches in the Layer 2 network to merge their Layer 2 databases and to prevent flooding of private VLAN
traffic.
You cannot include VLAN 1 or VLANs 1002 to 1005 in the private VLAN configuration. Extended VLANs
(VLAN IDs 1006 to 4094) can be configured in private VLANs.
Command Reference, Cisco IOS XE Everest 16.5.1a (Catalyst 3650 Switches)
1022
private-vlan
To Next Page
Loading...
Need help?
General
