223
Predefined user roles
network-admin
Usage guidelines
This command and the undo private-vlan isolated command have the same function.
When you use the
save command to save the configuration, the private-vlan community
command is not saved into the configuration file.
Examples
This example shows how to meet the following requirements:
• VLAN 4 is a secondary VLAN, and it is associated with primary VLAN 2.
• GigabitEthernet 1/0/1 is a promiscuous port of VLAN 2.
• GigabitEthernet 1/0/2 and GigabitEthernet 1/0/3 are host ports.
• GigabitEthernet 1/0/2 and GigabitEthernet 1/0/3 can communicate at Layer 2 in secondary
VLAN 4.
# Configure VLAN 2 as a primary VLAN and associate it with secondary VLAN 4.
<Sysname> system-view
[Sysname] vlan 4
[Sysname-vlan4] quit
[Sysname] vlan 2
[Sysname-vlan2] private-vlan primary
[Sysname-vlan2] private-vlan secondary 4
[Sysname-vlan2] quit
# Configure GigabitEthernet 1/0/1 as a promiscuous port of VLAN 2.
[Sysname] interface gigabitethernet 1/0/1
[Sysname-GigabitEthernet1/0/1] port private-vlan 2 promiscuous
[Sysname-GigabitEthernet1/0/1] quit
# Assign GigabitEthernet 1/0/2 to VLAN 4 and configure the port as a host port.
[Sysname] interface gigabitethernet 1/0/2
[Sysname-GigabitEthernet1/0/2] port access vlan 4
[Sysname-GigabitEthernet1/0/2] port private-vlan host
[Sysname-GigabitEthernet1/0/2] quit
# Assign GigabitEthernet 1/0/3 to VLAN 4 and configure the port as a host port.
[Sysname] interface gigabitethernet 1/0/3
[Sysname-GigabitEthernet1/0/3] port access vlan 4
[Sysname-GigabitEthernet1/0/3] port private-vlan host
[Sysname-GigabitEthernet1/0/3] quit
# Enable Layer 2 communication in secondary VLAN 4.
[Sysname] vlan 4
[Sysname-vlan4] private-vlan community
Related commands
private-vlan isolated
private-vlan isolated
Use private-vlan isolated to isolate ports in a secondary VLAN at Layer 2.
To Next Page
Loading...
