Solved

normal trunk and private Vlan

Posted on 2014-09-10
3
597 Views
Last Modified: 2014-09-14
Hello Expert

I have a trunk on a Nexus 1000V Interface

interface Ethernet3/7
  inherit port-profile MY-UPLINK

interface Ethernet3/8
  inherit port-profile MY-UPLINK

++++++++++++++++++++

port-profile type ethernet MY-UPLINK
  vmware port-group
  switchport mode trunk
  switchport trunk allowed vlan 500, 600, 700                                          
  no shutdown
  system vlan 500
  state enabled
++++++++++++++++++++

Vlan 600 will be in Future a Private Vlan associated wit private Vlan 601 and 602

##
sh feature
conf t
fearture private-vlan
vlan 601 private-vlan isolated
vlan 602 private-vlan isolated


vlan 600 private-vlan primaery
private-vlan association 601, 602

##################################################

is the Trunk Config Ok like this?

++++++++++++++++++++

port-profile type ethernet MY-UPLINK
  vmware port-group
  switchport mode trunk
  switchport trunk allowed vlan 500, 600, 601, 602, 700                                          
  no shutdown
  system vlan 500
  state enabled
++++++++++++++++++++

on the other Side of the trunk is a cisco nexus 5548 and i will go to configure the promisc port there

is this Configuration possible?
to put private Vlans and normal vlans in on trunk?
0
Comment
Question by:michapdm
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 32

Expert Comment

by:harbor235
ID: 40316921
Why do you want to do that? A private vlan separates the vlan into separate broadcast domains, trunks connect switches and extend vlans and broadcast domains so you can add hosts anywhere in the switch mesh, the trunk port is not where you want to implement PVLANs.

harbor235 ;}
0
 
LVL 22

Accepted Solution

by:
eeRoot earned 500 total points
ID: 40320940
You config is technically correct.  But if the Nexus switches are all operating as layer 2 devices, they will not route traffic between VLAN's anyway.  If you want an isolated VLAN on the Nexus switches, simply do not allow that VLAN to pass across the uplinks to your core switch/router (or where the intra VLAN routing is taking place)
0
 

Author Closing Comment

by:michapdm
ID: 40321614
I found a config that is working as i explained.
Thanks Experts
0

Featured Post

Secure Your WordPress Site: 5 Essential Approaches

WordPress is the web's most popular CMS, but its dominance also makes it a target for attackers. Our eBook will show you how to:

Prevent costly exploits of core and plugin vulnerabilities
Repel automated attacks
Lock down your dashboard, secure your code, and protect your users

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
This article will inform Clients about common and important expectations from the freelancers (Experts) who are looking at your Gig.
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

738 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question