Support User Manuals

AMX NXA-ENET24 Switch User Manual

Open as PDF

of 304

CLI (Command Line Interface)

259

NXA-ENET24 - Software Management Guide

Displaying VLAN Information

Configuring Private VLANs

Private VLANs provide port-based security and isolation between ports within the assigned VLAN. This

switch supports two types of private VLAN ports: promiscuous, and community ports.

 A promiscuous port can communicate with all interfaces within a private VLAN.

 Community ports can only communicate with other ports in their own community VLAN, and with

their designated promiscuous ports.

This section describes commands used to configure private VLANs.

To configure private VLANs, follow these steps:

1. Use the private-vlan command to designate one or more community VLANs and the primary VLAN that

will channel traffic outside the community groups.

2. Use the private-vlan association command to map the secondary

(i.e., community) VLAN(s) to the primary VLAN.

3. Use the switchport mode private-vlan command to configure ports as promiscuous (i.e., having access

to all ports in the primary VLAN) or host (i.e., having access restricted to community VLAN members,

and channeling all other traffic through a promiscuous port).

4. Use the switchport private-vlan host-association command to assign a port to a secondary VLAN.

5. Use the switchport private-vlan mapping command to assign a port to a primary VLAN.

6. Use the show vlan private-vlan command to verify your configuration settings.

Displaying VLAN Information

Command Function

show vlan

This command shows VLAN

information.

Syntax:

show vlan [id vlan-id | name vlan-name | private-vlan private-

vlan-type]

• id - Keyword to be followed by the VLAN ID.

• vlan-id - ID of the configured VLAN. (Range: 1-4094, no leading zeroes)

• name - Keyword to be followed by the VLAN name.

• vlan-name - ASCII string from 1 to 32 characters.

• private-vlan - For an explanation of this command see “show vlan private-

vlan” on page 4-162

Default Setting: Shows all VLANs.

Command Mode: Normal Exec, Privileged Exec

Example: The following example shows how to display information for VLAN 1:

Console#show vlan id 1

Vlan ID: 1

Type: Static

Name: DefaultVlan

Status: Active

Ports/Port channel: Eth1/ 1(S) Eth1/ 2(S) Eth1/ 3(S) Eth1/ 4(S)

Eth1/ 5(S)

Eth1/ 6(S) Eth1/ 7(S) Eth1/ 8(S) Eth1/ 9(S)

Eth1/10(S)

Eth1/11(S) Eth1/12(S) Eth1/13(S) Eth1/14(S)

Eth1/15(S)

Eth1/16(S) Eth1/17(S) Eth1/18(S) Eth1/19(S)

Eth1/20(S)

Eth1/21(S) Eth1/22(S) Eth1/23(S) Eth1/24(S)

Eth1/25(S)

Eth1/26(S)

Console#

show interfaces status vlan See page 234.

show interfaces switchport See page 236

previous next