Cisco ME 3400 Command Reference Manual page 368
Ethernet access switch
Hide thumbs
Also See for ME 3400:
- Software configuration manual (1138 pages) ,
- Command reference manual (872 pages) ,
- Hardware installation manual (88 pages)
Table of Contents
Advertisement
Chapter 2
Cisco ME 3400 Ethernet Access Switch Cisco IOS Commands
private-vlan
A community VLAN carries traffic among community ports and from community ports to the
promiscuous ports on the corresponding primary VLAN. A community VLAN can include no more than
eight user network interfaces (UNIs).
An isolated VLAN is used by isolated ports to communicate with promiscuous ports. It does not carry
traffic to other community ports or to isolated ports with the same primary VLAN domain.
A primary VLAN is the VLAN that carries traffic from a gateway to customer end stations on private
ports.
Configure Layer 3 VLAN interfaces (SVIs) only for primary VLANs. You cannot configure Layer 3
VLAN interfaces for secondary VLANs. SVIs for secondary VLANs are inactive while the VLAN is
configured as a secondary VLAN.
The private-vlan commands do not take effect until you exit from VLAN configuration mode.
Do not configure private-VLAN ports as EtherChannels. While a port is part of the private-VLAN
configuration, any EtherChannel configuration for it is inactive.
A private VLAN cannot be a Remote Switched Port Analyzer (RSPAN) VLAN.
A private VLAN cannot be a user network interface-enhanced network interface (UNI-ENI) VLAN. If
the VLAN is a UNI-ENI isolated VLAN (the default), you can change it to a private VLAN by entering
the private-vlan VLAN configuration command. If a VLAN has been configured as a UNI-ENI
community VLAN, you must first enter the no uni-vlan VLAN configuration command before
configuring it as a private VLAN.
Although a private VLAN contains more than one VLAN, only one STP instance runs for the entire
private VLAN. When a secondary VLAN is associated with the primary VLAN, the STP parameters of
the primary VLAN are propagated to the secondary VLAN.
See the
switchport private-vlan
command for information about configuring host ports and
promiscuous ports.
For more information about private-VLAN interaction with other features, see the software
Note
configuration guide for this release.
Examples
This example shows how to configure VLAN 20 as a primary VLAN, VLAN 501 as an isolated VLAN,
VLANs 502 and 503 as community VLANs, and to associate them in a private VLAN. The example
assumes that VLANs 502 and 503 were previously configured as UNI-ENI community VLANs.
Switch# configure terminal
Switch(config)# vlan 20
Switch(config-vlan)# private-vlan primary
Switch(config-vlan)# exit
Switch(config)# vlan 501
Switch(config-vlan)# private-vlan isolated
Switch(config-vlan)# exit
Switch(config)# vlan 502
Switch(config-vlan)# no uni-vlan
Switch(config-vlan)# private-vlan community
Switch(config-vlan)# exit
Switch(config)# vlan 503
Switch(config-vlan)# no uni-vlan
Switch(config-vlan)# private-vlan community
Switch(config-vlan)# exit
Switch(config)# vlan 20
Switch(config-vlan)# private-vlan association 501-503
Switch(config-vlan)# end
Cisco ME 3400 Ethernet Access Switch Command Reference
2-340
OL-9640-10
Advertisement
Table of Contents
