Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

normal trunk and private Vlan

Posted on 2014-09-10
3
Medium Priority
?
604 Views
Last Modified: 2014-09-14
Hello Expert

I have a trunk on a Nexus 1000V Interface

interface Ethernet3/7
  inherit port-profile MY-UPLINK

interface Ethernet3/8
  inherit port-profile MY-UPLINK

++++++++++++++++++++

port-profile type ethernet MY-UPLINK
  vmware port-group
  switchport mode trunk
  switchport trunk allowed vlan 500, 600, 700                                          
  no shutdown
  system vlan 500
  state enabled
++++++++++++++++++++

Vlan 600 will be in Future a Private Vlan associated wit private Vlan 601 and 602

##
sh feature
conf t
fearture private-vlan
vlan 601 private-vlan isolated
vlan 602 private-vlan isolated


vlan 600 private-vlan primaery
private-vlan association 601, 602

##################################################

is the Trunk Config Ok like this?

++++++++++++++++++++

port-profile type ethernet MY-UPLINK
  vmware port-group
  switchport mode trunk
  switchport trunk allowed vlan 500, 600, 601, 602, 700                                          
  no shutdown
  system vlan 500
  state enabled
++++++++++++++++++++

on the other Side of the trunk is a cisco nexus 5548 and i will go to configure the promisc port there

is this Configuration possible?
to put private Vlans and normal vlans in on trunk?
0
Comment
Question by:michapdm
3 Comments
 
LVL 32

Expert Comment

by:harbor235
ID: 40316921
Why do you want to do that? A private vlan separates the vlan into separate broadcast domains, trunks connect switches and extend vlans and broadcast domains so you can add hosts anywhere in the switch mesh, the trunk port is not where you want to implement PVLANs.

harbor235 ;}
0
 
LVL 22

Accepted Solution

by:
eeRoot earned 2000 total points
ID: 40320940
You config is technically correct.  But if the Nexus switches are all operating as layer 2 devices, they will not route traffic between VLAN's anyway.  If you want an isolated VLAN on the Nexus switches, simply do not allow that VLAN to pass across the uplinks to your core switch/router (or where the intra VLAN routing is taking place)
0
 

Author Closing Comment

by:michapdm
ID: 40321614
I found a config that is working as i explained.
Thanks Experts
0

Featured Post

[Webinar] Cloud and Mobile-First Strategy

Maybe you’ve fully adopted the cloud since the beginning. Or maybe you started with on-prem resources but are pursuing a “cloud and mobile first” strategy. Getting to that end state has its challenges. Discover how to build out a 100% cloud and mobile IT strategy in this webinar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
Unable to change the program that handles the scan event from a network attached Canon/Brother printer/scanner. This means you'll always have to choose which program handles this action, e.g. ControlCenter4 (in the case of a Brother).
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question