Filter
Top Products
490 PowerConnect B-Series FCX Configuration Guide
53-1002266-01
Configuring private VLANs
13
• Community – Broadcasts and unknown unicasts received on community ports are sent to the
primary port and also are flooded to the other ports in the community VLAN.
Each PVLAN must have a primary VLAN. The primary VLAN is the interface between the secured
ports and the rest of the network. The PVLAN can have any combination of community and isolated
VLANs.
As with regular VLANs, PVLANs can span multiple switches. The PVLAN is treated like any other
VLAN by the PVLAN-trunk ports. The PVLAN-trunk port is added to both the primary and the
secondary VLANs as a tagged member through the pvlan-trunk command. Figure 106 shows an
example of a PVLAN network across switches:
• Broadcast, unknown unicast or unregistered multicast traffic from the primary VLAN port is
forwarded to all ports in isolated and community VLANs in both the switches.
• Broadcast, unknown unicast or unregistered multicast traffic from an isolated port in switch A
is not forwarded to an isolated port in switch A. It will not be forwarded to an isolated port in
switch B across the PVLAN-trunk port.
• Broadcast, unknown unicast or unregistered multicast traffic from a community port in switch
A will be forwarded to a community port in switch B through the PVLAN-trunk port. It is
forwarded to the promiscuous ports and switch – switch ports of the primary VLAN.
FIGURE 106 PVLAN across switches
Figure 107 shows an example PVLAN network with tagged switch-switch link ports.
Switch A
Switch B
PVLAN-Trunk Port - carries traffic
for VLAN 10, 20 and 100
RoutersFirewall
PVLAN-Trunk Ports
1/11 1/10 1/20
1/5 1/15 1/16
1/1 1/2 1/3 1/11 1/12 1/13
VLAN 10
Isolated VLAN
VLAN 100
Primary VLAN
VLAN 20
Community VLAN
VLAN 10
Isolated VLAN
VLAN 20
Community VLAN