beautypg.com

Configuring an isolated or community pvlan – Brocade FastIron Ethernet Switch Platform and Layer 2 Switching Configuration Guide User Manual

Page 416

background image

• The vlan-id parameter specifies another PVLAN. The other PVLAN you want to specify must

already be configured.

• The ethernet portnum parameter specifies the primary VLAN port to which you are mapping all the

ports in the other PVLAN (the one specified by vlan-id ).

The pvlan pvlan-trunk command identifies the switch-switch link for the PVLAN. There can be more
than one switch-switch link for a single community VLAN.

Configuring an isolated or community PVLAN

You can use the pvlan type command to configure the PVLAN as an isolated or community PVLAN.
The following are some configuration considerations to be noted for configuring isolated and
community PVLANs.

Isolated VLANs

• A port being added to the isolated VLAN can be either a tagged port or an untagged port.
• An isolated port (member of an isolated VLAN) communicates only with the promiscuous port, if a

promiscuous port is configured.

• An isolated VLAN must be associated with the primary VLAN for traffic from the isolated port to be

switched. An isolated VLAN is associated with only one primary VLAN and to the same primary
VLAN in the entire switched network.

• An isolated port communicates only with the configured switch-switch link port even if there are

promiscuous ports configured for the isolated VLAN.

• A primary VLAN is associated with only one isolated VLAN. An isolated VLAN can only be mapped

to a promiscuous port and a switch-switch link port that belong to the same primary VLAN.

• Link Aggregation Group (LAG) ports are not allowed as member ports of an isolated VLAN.

Community VLANs

• A port being added to the community VLAN can be either a tagged port or an untagged port.
• A member port of a community VLAN classifies a frame based on VLAN ID only.
• A community VLAN is associated with only one primary VLAN and to the same primary VLAN in the

entire switched network. A primary VLAN is associated with multiple community VLANs.

• A community VLAN must be associated with the primary VLAN for traffic from the community port to

be switched.

• LAG ports are not allowed as member ports of a community VLAN.

To configure a community PVLAN, enter commands such as the following.

device(config)# vlan 901

device(config-vlan-901)# untagged ethernet 3/5 to 3/6

device(config-vlan-901)# pvlan type community

These commands create port-based VLAN 901, add ports 3/5 and 3/6 to the VLAN as untagged ports,
then specify that the VLAN is a community PVLAN.

Syntax: untagged ethernet [slotnum/]portnum [to [slotnum/]portnum | ethernet [slotnum/]portnum]

or

Syntax: tagged ethernet [slotnum/]portnum [to [slotnum/]portnum | ethernet [slotnum/]portnum]

Syntax: [no] pvlan type community | isolated | primary

The untagged ethernet or taggd ethernet command adds the ports to the VLAN.

The pvlan type command specifies that this port-based VLAN is a PVLAN and can be of the following
types:

Configuring an isolated or community PVLAN

416

FastIron Ethernet Switch Platform and Layer 2 Switching Configuration Guide

53-1003086-04

See also other documents in the category Brocade Computer Accessories: