Information About Private Vlans; Private Vlan Overview; Primary And Secondary Vlans In Private Vlans - Cisco Nexus 7000 Series Configuration Manual

Nx-os layer 2 switching

Hide thumbs Also See for Nexus 7000 Series:

Command reference manual (1018 pages)

Reference manual (746 pages)

Configuration manual (536 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

page of 230

/ 230
Contents
Table of Contents
Bookmarks

Table of Contents

Information About Private VLANs

A Layer 2 port can function as either a trunk port, an access port, or a private VLAN port.

Note

You must enable the private VLAN feature before you can configure this feature.

Note

In certain instances where similar systems do not need to interact directly, private VLANs provide additional

protection at the Layer 2 level. Private VLANs are an association of primary and secondary VLANs.

A primary VLAN defines the broadcast domain with which the secondary VLANs are associated. The secondary

VLANs may either be isolated VLANs or community VLANs. Hosts on isolated VLANs communicate only

with associated promiscuous ports in primary VLANs, and hosts on community VLANs communicate only

among themselves and with associated promiscuous ports but not with isolated ports or ports in other community

VLANs.

In configurations that use integrated switching and routing functions, you can assign a single Layer 3 VLAN

network interface to each private VLAN to provide routing. The VLAN network interface is created for the

primary VLAN. In such configurations, all secondary VLANs communicate at Layer 3 only through a mapping

with the VLAN network interface on the primary VLAN. Any VLAN network interfaces previously created

on the secondary VLANs are put out-of-service.

Private VLAN Overview

You must enable private VLANs before the device can apply the private VLAN functionality.

You cannot disable private VLANs if the device has any operational ports in a private VLAN mode.

Note

You must have already created the VLAN before you can convert the specified VLAN to a private VLAN,

either primary or secondary.

Primary and Secondary VLANs in Private VLANs

The private VLAN feature addresses two problems that users encounter when using VLANs:

• Each VDC supports up to 4096 VLANs. If a user assigns one VLAN per customer, the number of

• To enable IP routing, each VLAN is assigned with a subnet address space or a block of addresses, which

Using private VLANs solves the scalability problem and provides IP address management benefits and Layer 2

security for customers.

The private VLAN feature allows you to partition the Layer 2 broadcast domain of a VLAN into subdomains.

A subdomain is represented by a pair of private VLANs: a primary VLAN and a secondary VLAN. A private

Cisco Nexus 7000 Series NX-OS Layer 2 Switching Configuration Guide, Release 5.x

customers that the service provider can support is limited.

can result in wasting the unused IP addresses and creating IP address management problems.

Configuring Private VLANs Using NX-OS

Table of Contents

Information About Private Vlans; Private Vlan Overview; Primary And Secondary Vlans In Private Vlans - Cisco Nexus 7000 Series Configuration Manual

Information About Private VLANs

Information About Private VLANs

Private VLAN Overview

Primary and Secondary VLANs in Private VLANs

Related Manuals for Cisco Nexus 7000 Series

Related Content for Cisco Nexus 7000 Series

Table of Contents