Name: Cisco Catalyst 4500 Series
Brand: Cisco
Rating: 4 (1 reviews)

To Next Page

To Previous Page

55-15

Catalyst 4500 Series Switch, Cisco IOS Software Configuration Guide - Cisco IOS XE 3.9.xE and IOS 15.2(5)Ex

Chapter 55 Configuring Port Security

Configuring Port Security on PVLAN Ports

Figure 55-1 Port Security on Isolated Private VLAN Host Ports

Note Dynamic addresses secured on an isolated private VLAN host port on private VLANs are secured on the

secondary VLANs, and not primary VLANs.

To configure port security on an isolated private VLAN host port, perform this task:

Layer 2 switch

Router

PCPC

Port security

implemented on

isolated VLAN

host ports a and b

140973

Promiscuous port

Command Purpose

Step 1

Switch# configure terminal

Enter global configuration mode.

Step 2

Switch(config)# vlan sec_vlan_id

Specifies a secondary VLAN.

Step 3

Switch(config-vlan)# private-vlan isolated

Sets the private VLAN mode to isolated.

Step 4

Switch(config-vlan)# exit

Returns to global configuration mode.

Step 5

Switch(config)# vlan pri_vlan_id

Specifies a primary VLAN.

Step 6

Switch(config-vlan)# private-vlan primary

Specifies the VLAN as the primary private VLAN.

Step 7

Switch(config-vlan)# private-vlan association

add sec_vlan_id

Creates an association between a secondary VLAN and a

primary VLAN.

Step 8

Switch(config-vlan)# exit

Returns to global configuration mode.

Step 9

Switch(config)# interface interface_id

Enters interface configuration mode and specifies the

physical interface to configure.

Step 10

Switch(config-if)# switchport mode private-vlan

host

Specifies that the ports with a valid private VLAN trunk

association become active host private VLAN trunk ports.

Step 11

Switch(config-if)# switchport private-vlan

host-association primary_vlan secondary_vlan

Establishes a host association on an isolated host port.

Step 12

Switch(config-if)# [no] switchport port-security

Enables port security on the interface.

Step 13

Switch(config-if)# end

Returns to privileged EXEC mode.

Step 14

Switch# show port-security address

interface interface_id

Switch# show port-security address

Verifies your entries.

Other manuals for Cisco Catalyst 4500 Series

Manual19 pages

Command Reference Guide1230 pages

System Message Guide150 pages

Configuration Guide1610 pages

Administration Guide1814 pages

Message Guide146 pages

Installation Guide194 pages

Datasheet11 pages

Overview46 pages

Quick Reference Guide59 pages

Questions and Answers:

Need help?

Do you have a question about the Cisco Catalyst 4500 Series and is the answer not in the manual?

Cisco Catalyst 4500 Series Specifications

General

Series	Catalyst 4500 Series
Category	Switch
Layer Support	Layer 2, Layer 3
Form Factor	Modular chassis
Stackable	No
Chassis Slots	3, 6, 7, 10
Power Supply Options	AC, DC
Redundancy	Power supply, Supervisor engine
Network Management	Cisco IOS Software CLI, SNMP, Cisco Prime Infrastructure
Features	Security, QoS
Port Density	Up to 384 ports per chassis
Security Features	802.1X, ACLs, DHCP Snooping, Dynamic ARP Inspection, IP Source Guard
Supervisor Engine	8-E