Command Line Interface
870 1553-KDU 137 365 Uen D 2006-06-16
7.17.16 private-vlan
This command creates a primary or isolated private VLAN. Use the no form to
remove the specified private VLAN.
Syntax
private-vlan <vlan-id> {primary | isolated}
no private-vlan <vlan-id>
• vlan-id – ID of private VLAN. (Range: 1-4094, no leading
zeroes).
• primary – Specifies a primary VLAN which contains one or more
promiscuous ports, and serves to channel traffic between
associated isolated VLANs and other locations.
• isolated – Specifies an isolated VLAN. Ports assigned to an
isolated VLAN cannot directly communicate with other isolated port
members, and can only communicate with promiscuous ports in the
associated primary VLAN.
Default Setting
None
Command Mode
VLAN Configuration
Command Usage
• Private VLANs restrict traffic to ports within isolated VLANs, and
channel traffic passing outside the isolated VLAN through promiscuous
ports in the associated primary VLAN. When using isolated VLANs,
they must be mapped to an associated “primary” VLAN that contains
promiscuous ports.
• Port membership for private VLANs is static. Once a port has been
assigned
to a private VLAN, it cannot be dynamically moved to another
VLAN via GVRP.
To Next Page
Loading...
