Chapter 3 43 2007 2010 Cisco Systems Inc All rights reserved Cisco Public pVLAN

Chapter 3 43 2007 2010 cisco systems inc all rights

This preview shows page 43 - 48 out of 59 pages.

Chapter 3 43 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public pVLAN Configuration for Scenario 2 To configure a Layer 2 interface as a Private VLAN trunk port, use the interface command: Switch(config-if)# switchport private-vlan association trunk primary_vlan_ID secondary_vlan_ID If the port is set to promiscuous, use the mapping command : Switch(config-if)# switchport private-vlan mapping primary_vlan_ID secondary_vlan_list Once the trunk is configured, allow VLANs with the command Switch(config-if)# switchport private-vlan trunk allowed vlan vlan_list Configure the native VLAN with following command Switch(config-if)# switchport private-vlan trunk native vlan vlan_id Switch(config)# interface fastethernet 5/2 Switch(config-if)# switchport mode private-vlan trunk secondary Switch(config-if)# switchport private-vlan trunk native vlan 10 Switch(config-if)# switchport private-vlan trunk allowed vlan 10, 3,301-302 Switch(config-if)# switchport private-vlan association trunk 3 301 Switch(config-if)# switchport private-vlan association trunk 3 302
Image of page 43
Chapter 3 44 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public pVLAN Verification for Scenario 2 Switch# show interfaces fastethernet 5/2 switchport Name: Fa5/2 Switchport: Enabled Administrative Mode: private-vlan trunk secondary Operational Mode: private-vlan trunk secondary Administrative Trunking Encapsulation: negotiate Operational Trunking Encapsulation: dot1q Negotiation of Trunking: On Access Mode VLAN: 1 (default) Trunking Native Mode VLAN: 1 (default) Administrative Native VLAN tagging: enabled Voice VLAN: none Administrative private-vlan host-association: none Administrative private-vlan mapping: none Administrative private-vlan trunk native VLAN: 10 Administrative private-vlan trunk Native VLAN tagging: enabled Administrative private-vlan trunk encapsulation: dot1q Administrative private-vlan trunk normal VLANs: none Administrative private-vlan trunk associations: 3 (VLAN0003) 301 (VLAN0301) Administrative private-vlan trunk mappings: none Operational private-vlan: none Operational Normal VLANs: none Trunking VLANs Enabled: ALL Pruning VLANs Enabled: 2-1001
Image of page 44
Chapter 3 45 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public pVLAN Edge (Protected Port) Feature The PVLAN edge (protected port) feature has only local significance to the switch (unlike pVLANs), and there is no isolation provided between two protected ports located on different switches. A protected port does not forward any traffic to any other port that is also a protected port on the same switch. Traffic cannot be forwarded between protected ports at L2, all traffic passing between protected ports must be forwarded through an L3 device. Switch(config-if)# switchport protected
Image of page 45
Chapter 3 46 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Configuring Etherchannel in a Switched Network
Image of page 46
Chapter 3 47 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public EtherChannel Technology Up to 8 physical links can be bundled into a single logical EtherChannel link. Usually EtherChannel is used for trunk links.
Image of page 47
Image of page 48

Other Related Materials

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture