Secondary VLAN provide isolation between the ports within the same private VLAN domain. The following
two types are secondary VLANs within a primary VLAN:
• Isolated VLANs—Ports within an isolated VLAN cannot communicate directly with each other at the
Layer 2 level.
• Community VLANs—Ports within a community VLAN can communicate with each other but cannot
communicate with ports in other community VLANs or in any isolated VLANs at the Layer 2 level.
Baseboard Ports and HIF Ports
The following figure shows the baseboard and host interface (HIF) ports on a Cisco Nexus switch.
Baseboard ports are ports on a baseboard module in a Cisco Nexus switch.1
FEX HIF ports are ports on the FEX module.2
Associating Secondary VLANs with a Primary Private VLAN
When you associate secondary VLANs with a primary VLAN, follow these guidelines:
•
The secondary-vlan-list parameter cannot contain spaces. It can contain multiple comma-separated items.
Each item can be a single secondary VLAN ID or a hyphenated range of secondary VLAN IDs.
•
The secondary-vlan-list parameter can contain multiple community VLAN IDs and one isolated VLAN
ID.
•
Enter a secondary-vlan-list or use the add keyword with a secondary-vlan-list to associate secondary
VLANs with a primary VLAN.
•
Use the remove keyword with a secondary-vlan-list to clear the association between secondary VLANs
and a primary VLAN.
Cisco Nexus 6000 Series NX-OS Layer 2 Switching Configuration Guide, Release 7.x
29
Configuring Private VLANs
Primary and Secondary VLANs in Private VLANs
To Next Page
Loading...
