3 private vlan – PLANET SGSD-1022 User Manual

User’s Manual of SGSD-1022 / SGSD-1022P

SGSW-2840 / SGSW-2840P

4.8.3 Private VLAN

Private VLANs provide port-based security and isolation between ports within the assigned VLAN. This Managed Switch

supports two types of private VLANs:

„

primary / secondary associated groups

„

stand-alone isolated VLANs.

A primary VLAN contains promiscuous ports that can communicate with all other ports in the private VLAN group, while a

secondary (or community) VLAN contains community ports that can only communicate with other hosts within the secondary

VLAN and with any of the promiscuous ports in the associated primary VLAN. Isolated VLANs, on the other hand, consist a

single stand-alone VLAN that contains one promiscuous port and one or more isolated (or host) ports. In all cases, the

promiscuous ports are designed to provide open access to an external network such as the Internet, while the community or

isolated ports provide restricted access to local users.

Multiple primary VLANs can be configured on this Managed Switch, and multiple community VLANs can be associated with

each primary VLAN. One or more isolated VLANs can also be configured.

Private VLANs and normal VLANs can exist simultaneously within the same switch.

195