Cisco Systems 4500 Switch User Manual

Open as PDF

of 1504

39-20

Software Configuration Guide—Release 15.0(2)SG

OL-23818-01

Chapter 39 Configuring Private VLANs

Configuring PVLANs

This example shows how to configure interface FastEthernet 5/2 as a secondary trunk port, and verify

the configuration:

Switch# configure terminal

Switch(config)# interface fastethernet 5/2

Switch(config-if)# switchport mode private-vlan trunk secondary

Switch(config-if)# switchport private-vlan trunk native vlan 10

Switch(config-if)# switchport private-vlan trunk allowed vlan 10. 3-4

Switch(config-if)# switchport private-vlan association trunk 3 301

Switch(config-if)# end

Switch# show interfaces fastethernet 5/2 switchport

Name: Fa5/2

Switchport: Enabled

Administrative Mode: private-vlan trunk secondary

Operational Mode: private-vlan trunk secondary

Administrative Trunking Encapsulation: negotiate

Operational Trunking Encapsulation: dot1q

Negotiation of Trunking: On

Access Mode VLAN: 1 (default)

Step 4

Switch(config-if)# [no] switchport private-vlan

association trunk primary_vlan_ID

secondary_vlan_ID

Configures association between primary VLANs and

secondary VLANs the PVLAN trunk port with a

PVLAN.

Note Multiple PVLAN pairs can be specified using

this command so that a PVLAN trunk port can

carry multiple secondary VLANs. If an

association is specified for the existing primary

VLAN, the existing association is replaced. If

there is no trunk association, any packets

received on secondary VLANs are dropped.

You can use the no keyword to delete all associations

from the primary VLAN.

Step 5

Switch(config-if)# [no] switchport private-vlan

trunk allowed vlan vlan_list all | none | [add |

remove | except] vlan_atom[,vlan_atom...]

Configures a list of allowed normal VLANs on a PVLAN

trunk port.

You can use the no keyword to remove all allowed

normal VLANs on a PVLAN trunk port.

Step 6

Switch(config-if)# switchport private-vlan trunk

native vlan vlan_id

Configures a VLAN to which untagged packets (as in

IEEE 802.1Q tagging) are assigned on a PVLAN trunk

port.

If there is no native VLAN configured, all untagged

packets are dropped.

If the native VLAN is a secondary VLAN and the port

does not have the association for the secondary VLAN,

the untagged packets are dropped.

You can use the no keyword to remove all native VLANs

on a PVLAN trunk port.

Step 7

Switch(config-if)# end

Exits configuration mode.

Step 8

Switch# show interfaces {fastethernet |

gigabitethernet | tengigabitethernet} slot/port

switchport

Verifies the configuration.

Command Purpose

previous next

Top Automotive Device Types

Top Automotive Brands

Top Baby Care Device Types

Top Baby Care Brands

Top Car Audio & Video Device Types

Top Car Audio & Video Brands

Top Cellphone Device Types

Top Cellphone Brands

Top Communications Device Types

Top Communications Brands

Top Computer Device Types

Top Computer Brands

Top Fitness Device Types

Top Fitness Brands

Top Home Audio Device Types

Top Home Audio Brands

Top Household Appliance Device Types

Top Household Appliance Brands

Top Kitchen Appliance Device Types

Top Kitchen Appliance Brands

Top Laundry Appliance Device Types

Top Laundry Appliance Brands

Top Lawn & Garden Device Types

Top Lawn & Garden Brands

Top Marine Equipment Device Types

Top Marine Equipment Brands

Top Musical Instrument Device Types

Top Musical Instrument Brands

Top Outdoor Cooking Device Types

Top Outdoor Cooking Brands

Top Personal Care Device Types

Top Personal Care Brands

Top Photography Device Types

Top Photography Brands

Top Portable Media Device Types

Top Portable Media Brands

Top Power Tools Device Types

Top Power Tools Brands

Top TV and Video Device Types

Top TV and Video Brands

Top Videogame Device Types

Top Videogame Brands

Cisco Systems 4500 Switch User Manual