Private Vlan Port Configuration - Cisco Nexus 9000 Series Configuration Manual

Nx-os layer 2 switching configuration

Hide thumbs Also See for Nexus 9000 Series:

Configuration manual (562 pages)

Troubleshooting manual (126 pages)

Quick start configuration manual (6 pages)

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

Table Of Contents

199

page of 199

/ 199
Contents
Table of Contents
Bookmarks

Table of Contents

Private VLAN Port Configuration

• For private VLAN isolated trunk ports, note the following:

• To downgrade a system that has private VLAN ports configured, you must unconfigure these ports.

• Before you configure a VLAN as a secondary VLAN, you must shut down the VLAN network interface

Private VLAN Port Configuration

Follow these guidelines when configuring private VLAN ports:

• Use only the private VLAN configuration commands to assign ports to primary, isolated, or community

• The Layer 2 access ports that are assigned to the VLANs that you configure as primary, isolated, or

• If you delete a VLAN used in the private VLAN configuration, the private VLAN ports (promiscuous

• FEX HIF PC/VPC and FEX AA (active/active) configurations are not supported.

• PVLAN promiscuous port mode configurations are not supported on FEX ports and FEX port-channels.

Limitations with Other Features

Consider these configuration limitations with other features when configuring private VLANs:

In some cases, the configuration is accepted with no error messages, but the commands have no effect.

Note

• A private VLAN port can be configured as a SPAN source port.

• Private VLAN host or promiscuous ports cannot be a SPAN destination port.

• A destination SPAN port cannot be an isolated port. (However, a source SPAN port can be an isolated

Cisco Nexus 9000 Series NX-OS Layer 2 Switching Configuration Guide, Release 7.x

◦ You can configure a maximum of 16 private VLAN primary and secondary VLAN pairs on each

isolated trunk port.

◦ The native VLAN must be either a normal VLAN or a private VLAN secondary VLAN. You

cannot configure a private VLAN primary port as the native VLAN for a private VLAN isolated

trunk port.

Note

When downgrading to an image that supports PVLANs, removing the PVLAN is not

necessary.

for the secondary VLAN.

VLANs.

community VLANs are inactive while the VLAN is part of the private VLAN configuration. Layer 2

trunk interfaces, which may carry private VLANs, are active and remain part of the STP database.

ports or host ports, not trunk ports) that are associated with the VLAN become inactive.

port.)

Configuring Private VLANs Using NX-OS

Table of Contents

Show Quick Links

Quick Links:
Spanning Tree
Configuring Port Vlan Mapping on a...
Configuring Inner Vlan and Outer Vlan...

Hide quick links:

Table of Contents

Private Vlan Port Configuration - Cisco Nexus 9000 Series Configuration Manual

Private VLAN Port Configuration

Hide quick links:

Related Manuals for Cisco Nexus 9000 Series

Related Content for Cisco Nexus 9000 Series

Table of Contents