Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

PVLAN configuration

Posted on 2015-02-10
11
Medium Priority
?
191 Views
Last Modified: 2015-02-28
Hi

Please see my diagram.

On Switch 1 I have a SVI with ip address 192.168.0.1/24 for vlan 200 no PVLAN’s are configured on switch 1.

Between my switches is an etherchannel that is in trunk mode all vlans are allowed.
On switch 2 I have a PVLAN’s configured.

Primary vlan is 200 and secondary vlan is 99 isolated.
My question is will my pc on switch 2 be able to ping the SVI and access all servers on my remote subnets via SVI gateway when pc is in secondary vlan 99 on switch 2
diagram.jpg
0
Comment
Question by:ciscosupp
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 6
  • 5
11 Comments
 
LVL 50

Expert Comment

by:Don Johnston
ID: 40601065
Yes, assuming that the Switch-2 port which connects to Switch-1 is a promiscuous port.
0
 

Author Comment

by:ciscosupp
ID: 40601088
Nope it’s not because LACP (etherchannel) is not supporting promiscuous trunk.
Any other solution how I can get it to work.
0
 
LVL 50

Expert Comment

by:Don Johnston
ID: 40601104
Sorry.  Missed the etherchannel.

No workaround for that.  Etherchannel is incompatible with all PVLAN components.
0
Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

 

Author Comment

by:ciscosupp
ID: 40601120
But when I also configure PVLAN’s on switch 1 will it work and what must I still configure  under my SVI interface to make it work.
0
 
LVL 50

Expert Comment

by:Don Johnston
ID: 40601324
With an etherchannel between the two switches?  You can't make that work.
0
 

Author Comment

by:ciscosupp
ID: 40636929
But won’t it work when I configure normal trunk between switch 2 and 1 so my primary vlan id and secondary vlan id will be tagged normally over  etherchannel trunk and configure a SVI on switch 1 as promiscuous port.
Please advice
0
 
LVL 50

Expert Comment

by:Don Johnston
ID: 40636986
What model switches and what IOS version?
0
 

Author Comment

by:ciscosupp
ID: 40636989
SW2 3750x Latest firmware SW1  Nexus 5548U Latest firmware
0
 
LVL 50

Expert Comment

by:Don Johnston
ID: 40636997
What version number please?
0
 

Author Comment

by:ciscosupp
ID: 40637000
15.2.3E  ED
c3750e-universalk9-mz.152-3.E.bin

and


for nexus Release 7.1(0)N1(1a)
0
 
LVL 50

Accepted Solution

by:
Don Johnston earned 2000 total points
ID: 40637007
If you are going to have a private VLAN over an etherchannel link on a 3750, it won't work.

From the Etherchannel Software Configuration Guide:
Do not configure a private-VLAN port as part of an EtherChannel.

The problem is the ASIC's which are used in the 3750.  

But if the private VLAN is on the 5548, you may be okay.  I've never tried it on that platform and I can't find anything that says you can't.
0

Featured Post

Understanding Web Applications

Without even knowing it, most of us are using web applications on a daily basis. Gmail and Yahoo email, Twitter, Facebook, and eBay are used by most of us daily—and they are web applications. We often confuse these web applications tools for websites.  So, what is the difference?

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When you try to share a printer , you may receive one of the following error messages. Error message when you use the Add Printer Wizard to share a printer: Windows could not share your printer. Operation could not be completed (Error 0x000006…
In this article, we’ll look at how to deploy ProxySQL.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…
Suggested Courses

598 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question