switchport mode private-vlan
To configure an interface as either a host private-VLAN port or a promiscuous private-VLAN port, use the
switchport mode private-vlan command in interface configuration mode. To reset the mode to the appropriate
default for the device, use the no form of this command.
switchport mode private-vlan{host| promiscuous}
no switchport mode private-vlan
Syntax Description
Configures the interface as a private-VLAN host port. Host ports belong to
private-VLAN secondary VLANs and are either community ports or isolated ports,
depending on the VLAN to which they belong.
host
Configures the interface as a private-VLAN promiscuous port. Promiscuous ports are
members of private-VLAN primary VLANs.
promiscuous
Command Default
None
Command Modes
Interface configuration
Command History
ModificationRelease
This command was introduced.Cisco IOS XE 3.3SE
Usage Guidelines
A private-VLAN host or promiscuous port cannot be a Switched Port Analyzer (SPAN) destination port. If
you configure a SPAN destination port as a private-VLAN host or promiscuous port, the port becomes inactive.
Do not configure private VLAN on ports with these other features:
•
Dynamic-access port VLAN membership
•
Dynamic Trunking Protocol (DTP)
•
Port Aggregation Protocol (PAgP)
•
Link Aggregation Control Protocol (LACP)
•
Multicast VLAN Registration (MVR)
•
Voice VLAN
While a port is part of the private-VLAN configuration, any EtherChannel configuration for it is inactive
A private-VLAN port cannot be a secure port and should not be configured as a protected port.
Command Reference, Cisco IOS XE Everest 16.5.1a (Catalyst 3650 Switches)
1046
switchport mode private-vlan
To Next Page
Loading...
