Home » TRENDnet Manuals » Power » TRENDnet TPE-1020WS » Manual Viewer

TRENDnet TPE-1020WS User's Guide - Page 42

Create a private VLAN, Source Port

View all TRENDnet TPE-1020WS manuals

Add to My Manuals
Save this manual to your list of manuals

Page 42 highlights

TRENDnet User's Guide Create a private VLAN Bridge > VLAN > Private VLAN The private VLAN feature allows you to create a more secure VLAN that is completely isolated to it's members and cannot communicate with other VLANs. A private VLAN partitions the Layer 2 broadcast domain of a VLAN into subdomains, allowing you to isolate the ports on the switch from each other. A subdomain consists of a primary VLAN and one or more secondary VLANs. All VLANs in a private VLAN domain share the same primary VLAN. The secondary VLAN ID differentiates one subdomain from another. The secondary VLANs may either be isolated VLANs or community VLANs. A host on an isolated VLAN can only communicate with the associated promiscuous port in its primary VLAN. Hosts on community VLANs can communicate among themselves and with their associated promiscuous port but not with ports in other community VLANs. The following guidelines apply when configuring private VLANs: The default VLAN 1 cannot be a private VLAN. The management VLAN 4095 cannot be a private VLAN. The management port cannot be a member of a private VLAN.IGMP Snooping must be disabled on isolated VLANs. Each secondary port's (isolated port and community ports) PVID must match its corresponding secondary VLAN ID. Ports within a secondary VLAN cannot be members of other VLANs. All VLANs that make up the private VLAN must belong to the same Spanning Tree Group. 1. Log into your switch management page (see "Access your switch management page" on page 11). 2. Click on Bridge, click on VLAN, and click on Private VLAN. 3. To configure Private VLAN Settings, perform the following procedure: • Select Private VLAN status from the Status radio button choices that you want to change. o Enable: Enable Private VLAN settings. o Disable: Disable Private VLAN settings. • Press Apply for changes to take effect. • Set the Source Port to one of the following choices from the pull-down menu: All, 01 - 10. © Copyright 2013 TRENDnet. All Rights Reserved. TPE-1020WS • Click on the Forwarding Ports ratio button that applies to your configuration. • Click Apply. 4. Click Save Settings to Flash (menu). 5. Click Save Settings to Flash (button), then click OK. Note: This step saves all configuration changes to the NV-RAM to ensure that if the switch is rebooted or power cycled, the configuration changes will still be applied. 42

Section	Page
Product Overview	5
Package Contents	5
Features	5
Product Hardware Features	6
Application Diagram	7
Switch Installation	8
Desktop Hardware Installation	8
Rack Mount Hardware Installation	8
Basic Installation	9
Connect additional devices to your switch	10
Configure your switch	11
Access your switch management page	11
System Info	11
View your switch status information	11
System	13
Set your system information	13
Set your IPv4 settings	14
Set your IPv6 settings	15
Add IPv6 neighbors	16
Restrict access to switch management page	17
Change administrator password and add accounts	18
Enable or disable SNMP and modify idle timeout settings	19
Set the switch date and time	20
Enable HTTPS/SSL (Secure Socket Layer) management access	21
Enable DHCP Auto Configuration	22
View and setup your switch logging	22
Physical Interface	23
Configure your switch ports and view port status	23
Spanning Tree (STP, RSTP, MSTP)	25
Configure Spanning Tree Protocol settings	25
Configure Spanning Tree Protocol port settings	26
Configure Spanning Tree Protocol MST settings (MSTP)	28
View your Spanning Tree Protocol Instance Information (MSTP)	29
Configure Spanning Tree Protocol MST Port Settings (MSTP)	29
Trunk Config (Link Aggregation)	30
Configure port trunk settings	30
View your trunk group status information	31
Configure your port priority	31
Mirroring	32
Configure port mirror settings	32
Loopback Detection	33
Enable loopback detection	33
Static Unicast	34
Add static unicast entries to the switch	34
Static Multicast	35
Add static multicast entries to the switch	35
IGMP Snooping	36
Configure IGMP Snooping Settings	36
Configure IGMP Snooping Router Ports	36
Bandwidth Control	37
Configure Storm Control	37
Set Ingress Rate Limiting	38
Set Egress Rate Limiting	38
VLAN	39
Add, modify, and remove VLANs	39
Configure VLAN Port Settings	40
Configure the VLAN Forwarding Table Mode	41
View the switch VLAN dynamic forwarding table	41
Create a private VLAN	42
View the current VLAN database	43
GVRP (GARP VLAN Registration Protcol)	43
Enable GVRP	43
Set GVRP port settings	44
Set GVRP time settings	45
QoS (Quality of Service)	46
Set CoS priority settings	46
Set Port Priority	47
Set DSCP (Differentiated Services Code Point) Class Mapping settings	47
Set the Scheduling Algorithm	48
Configure the IPv6 Traffic Class Priority Settings	49
SNMP	50
Set the SNMP Engine ID	50
Configure the SNMP View Table	50
Configure the SNMP Group Access Table	51
Configure the SNMP User/Group Table	52
Configure the SNMP Community Table	53
Configure the SNMP Trap Management	54
Access Control Config	55
Configure Policy Settings	55
Configure Rate Control	59
View your policy database	60
RMON	60
Enable RMON	60
Configure parameters for RMON Ethernet statistics	61
Configure parameters for RMON history control settings	62
Configure parameters for RMON alarms	63
Configure parameters for RMON events	65
Voice VLAN	66
Create a Voice VLAN	67
Configure Voice VLAN OUI settings	68
Security	69
Configure Port Access Control	69
Create Dial-In Users (Local Authentication Method)	70
Add RADIUS Servers (RADIUS Authentication Method)	71
Add TACACS+ Servers (TACACS+ Authentication Method)	72
Destination MAC Filter	73
PoE Configuration	74
Configure PoE settings	75
DHCP Snooping	76
Enable DHCP Snooping	76
Enable DHCP Snooping	77
Set Trusted Interfaces	78
Configure Binding Database	78
LLDP (Link-Layer Discovery Protocol)	80
Enable and configure LLDP	80
View LLDP Neighbor Information	82
Statistic	82
View Traffic Information Statistics	82
View Error Information Statistics	83
Switch Maintenance	84
Upgrade your switch firmware	84
Firmware Upgrade via HTTP Settings	84
Firmware Upgrade via TFTP Settings	85
Backup and restore your switch configuration settings	85
Backup/Restore via HTTP Settings	85
Backup/Restore via TFTP Settings	86
Cable Diagnostics Test	87
Enable IEEE 802.3az Power Saving Mode	88
Reboot/Reset to factory defaults	88
Network Connectivity Test (Ping Tool)	89
Using the Web Smart Switch Management Utility	90
System Requirements	90
Installation	90
Using the Utility	91
Launching the Utility	91
Discovery List	92
Monitor List	92
Device Setting	93
Main Menu Options	94
Switch Management Page Structure	96
Technical Specifications	97
Troubleshooting	99

Match case Limit results 1 per page

TRENDnet User’s Guide

TPE-1020WS

Create a private VLAN

Bridge > VLAN > Private VLAN

The private VLAN feature allows you to create a more secure VLAN that is completely

isolated to it’s members and cannot communicate with other VLANs. A private VLAN

partitions the Layer 2 broadcast domain of a VLAN into subdomains, allowing you to

isolate the ports on the switch from each other. A subdomain consists of a primary

VLAN and one or more secondary VLANs. All VLANs in a private VLAN domain share the

same primary VLAN. The secondary VLAN ID differentiates one subdomain from

another. The secondary VLANs may either be isolated VLANs or community VLANs. A

host on an isolated VLAN can only communicate with the associated promiscuous port

in its primary VLAN. Hosts on community VLANs can communicate among themselves

and with their associated promiscuous port but not with ports in other community

VLANs.

The following guidelines apply when configuring private VLANs: The default VLAN 1

cannot be a private VLAN. The management VLAN 4095 cannot be a private VLAN. The

management port cannot be a member of a private VLAN.IGMP Snooping must be

disabled on isolated VLANs. Each secondary port's (isolated port and community ports)

PVID must match its corresponding secondary VLAN ID. Ports within a secondary VLAN

cannot be members of other VLANs. All VLANs that make up the private VLAN must

belong to the same Spanning Tree Group.

1. Log into your switch management page (see “

Access your switch management page

”

on page 11).

2. Click on

Bridge

, click on

VLAN,

and click on

Private VLAN

3. To configure Private VLAN Settings, perform the following procedure:

•

Select Private VLAN status from the

Status

radio button choices that you want

to change.

Enable

: Enable Private VLAN settings.

Disable

: Disable Private VLAN settings.

•

Press

Apply

for changes to take effect.

•

Set the

Source Port

to one of the following choices from the pull-down menu:

All, 01 – 10.

•

Click on the

Forwarding Ports

ratio button that applies to your configuration.

•

Click

Apply.

4. Click

Save Settings to Flash (menu)

5. Click

Save Settings to Flash (button)

, then click

OK.

Note:

This step saves all configuration changes to the NV-RAM to ensure that if the

switch is rebooted or power cycled, the configuration changes will still be applied.