Table of Contents
Advertisement
3
Port Isolation Configuration
When configuring port isolation, go to these sections for information you are interested in:
Introduction to Port Isolation
Configuring the Isolation Group
Displaying and Maintaining Isolation Groups
Port Isolation Configuration Example
Introduction to Port Isolation
Usually, Layer 2 traffic isolation is achieved by assigning ports to different VLANs. To save VLAN
resources, port isolation is introduced to isolate ports within a VLAN, allowing for great flexibility and
security.
Currently:
Switch 4510G Family support only one isolation group that is created automatically by the system
as isolation group 1. You can neither remove the isolation group nor create other isolation groups
on such devices.
There is no restriction on the number of ports assigned to an isolation group.
Layer 2 traffic can be exchanged between a port inside an isolation group and a port outside the
isolation group, but not between ports inside the isolation group.
Configuring the Isolation Group
Assigning a Port to the Isolation Group
Follow these steps to add a port to the isolation group:
To do...
Enter system view
Enter Ethernet
interface view
Enter Layer-2
aggregate
Enter
interface view
interface
view or,
port group
view
Enter port
group view
Assign the port or ports to
the isolation group as an
isolated port or ports
Use the command...
system-view
interface interface-type
interface-number
interface
bridge-aggregation
interface-number
port-group manual
port-group-name
port-isolate enable
3-1
Remarks
—
Required
Use one of the commands.
In
Ethernet
interface
subsequent configurations apply to
the current port.
In Layer-2 aggregate interface view,
the subsequent configurations apply
to the Layer-2 aggregate interface
and all its member ports.
In port group view, the subsequent
configurations apply to all ports in the
port group.
Required
No ports are added to the isolation group
by default.
view,
the
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
