Link to home
Start Free TrialLog in
Avatar of nainasipra
nainasipra

asked on

Protected Port & Voice VLAN

Dear Experts,

I am using Cisco Layer 3 Switches and I want to stop Host-to-Host communication. Each Port is configured as Data and Voice Port.
when I use "switchport protected" then I were able to stop host to host traffic but my telephone extension to extension communication were stopped as well.
How I can solve this issue that voice communication will not stop with protected ports.

thanks
Avatar of Predrag Jovic
Predrag Jovic
Flag of Poland image

You can't configure all port as protected and have communication between them.
Cisco
 Protected ports have these features:
•A protected port does not forward any traffic (unicast, multicast, or broadcast) to any other port that is also a protected port. Data traffic cannot be forwarded between protected ports at Layer 2; only control traffic, such as PIM packets, is forwarded because these packets are processed by the CPU and forwarded in software. All data traffic passing between protected ports must be forwarded through a Layer 3 device.
•Forwarding behavior between a protected port and a nonprotected port proceeds as usual.
•Protected ports are supported on 802.1Q trunks.
You will have to create ACLs and apply ACL to interface vlan to get result that you want.
If you need to isolate hosts you can achieve that on other ways - VACL or isolate VLANs if it is supported on your device.
Avatar of nainasipra
nainasipra

ASKER

Dear Predrag,

my switches are not supporting private vlan and if I use VACL then I can block/allow vlan to vlan communication. I want to block host to host communication in same vlan but as each port connected with PC and IP Phone. I want to stop PC to PC communication on same vlan on same switch but allow IP phones can talk each other on same vlan and same switch.
ASKER CERTIFIED SOLUTION
Avatar of Predrag Jovic
Predrag Jovic
Flag of Poland image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial