HP AP775A Cisco Nexus 5000 Series Command Reference, Release 4.1(3)N1(1) (OL-1 - Page 189
private-vlan
UPC - 884962062708
View all HP AP775A manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 189 highlights
Chapter 2 Ethernet Commands private-vlan Send comments to [email protected] private-vlan To configure private VLANs, use the private-vlan command. To return the specified VLANs to normal VLAN mode, use the no form of this command. private-vlan {isolated | community | primary} no private-vlan {isolated | community | primary} Syntax Description isolated community primary Designates the VLAN as an isolated secondary VLAN. Designates the VLAN as a community secondary VLAN. Designates the VLAN as the primary VLAN. Command Default None Command Modes VLAN configuration mode Command History Release 4.0(0)N1(1a) Modification This command was introduced. Usage Guidelines You must enable private VLANs by using the feature private-vlan command before you can configure private VLANs. The commands for configuring private VLANs are not visible until you enable private VLANs. If you delete either the primary or secondary VLAN, the ports that are associated with the VLAN become inactive. When you enter the no private-vlan command, the VLAN returns to the normal VLAN mode. All primary and secondary associations on that VLAN are suspended, but the interfaces remain in private VLAN mode. When you reconvert the specified VLAN to private VLAN mode, the original associations are reinstated. If you enter the no vlan command for the primary VLAN, all private VLAN associations with that VLAN are lost. If you enter the no vlan command for a secondary VLAN, the private VLAN associations with that VLAN are suspended and are reenabled when you recreate the specified VLAN and configure it as the previous secondary VLAN. You cannot configure VLAN1 or the internally allocated VLANs as private VLANs. A private VLAN is a set of private ports that are characterized by using a common set of VLAN number pairs. Each pair is made up of at least two special unidirectional VLANs and is used by isolated ports and/or by a community of ports to communicate with routers. An isolated VLAN is a VLAN that is used by isolated ports to communicate with promiscuous ports. An isolated VLAN's traffic is blocked on all other private ports in the same VLAN. Its traffic can only be received by standard trunking ports and promiscuous ports that are assigned to the corresponding primary VLAN. A promiscuous port is defined as a private port that is assigned to a primary VLAN. OL-16599-01 Cisco Nexus 5000 Series Command Reference 2-39