?
Solved

PVLAN configuration

Posted on 2015-02-10
11
Medium Priority
?
199 Views
Last Modified: 2015-02-28
Hi

Please see my diagram.

On Switch 1 I have a SVI with ip address 192.168.0.1/24 for vlan 200 no PVLAN’s are configured on switch 1.

Between my switches is an etherchannel that is in trunk mode all vlans are allowed.
On switch 2 I have a PVLAN’s configured.

Primary vlan is 200 and secondary vlan is 99 isolated.
My question is will my pc on switch 2 be able to ping the SVI and access all servers on my remote subnets via SVI gateway when pc is in secondary vlan 99 on switch 2
diagram.jpg
0
Comment
Question by:ciscosupp
  • 6
  • 5
11 Comments
 
LVL 50

Expert Comment

by:Don Johnston
ID: 40601065
Yes, assuming that the Switch-2 port which connects to Switch-1 is a promiscuous port.
0
 

Author Comment

by:ciscosupp
ID: 40601088
Nope it’s not because LACP (etherchannel) is not supporting promiscuous trunk.
Any other solution how I can get it to work.
0
 
LVL 50

Expert Comment

by:Don Johnston
ID: 40601104
Sorry.  Missed the etherchannel.

No workaround for that.  Etherchannel is incompatible with all PVLAN components.
0
VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

 

Author Comment

by:ciscosupp
ID: 40601120
But when I also configure PVLAN’s on switch 1 will it work and what must I still configure  under my SVI interface to make it work.
0
 
LVL 50

Expert Comment

by:Don Johnston
ID: 40601324
With an etherchannel between the two switches?  You can't make that work.
0
 

Author Comment

by:ciscosupp
ID: 40636929
But won’t it work when I configure normal trunk between switch 2 and 1 so my primary vlan id and secondary vlan id will be tagged normally over  etherchannel trunk and configure a SVI on switch 1 as promiscuous port.
Please advice
0
 
LVL 50

Expert Comment

by:Don Johnston
ID: 40636986
What model switches and what IOS version?
0
 

Author Comment

by:ciscosupp
ID: 40636989
SW2 3750x Latest firmware SW1  Nexus 5548U Latest firmware
0
 
LVL 50

Expert Comment

by:Don Johnston
ID: 40636997
What version number please?
0
 

Author Comment

by:ciscosupp
ID: 40637000
15.2.3E  ED
c3750e-universalk9-mz.152-3.E.bin

and


for nexus Release 7.1(0)N1(1a)
0
 
LVL 50

Accepted Solution

by:
Don Johnston earned 2000 total points
ID: 40637007
If you are going to have a private VLAN over an etherchannel link on a 3750, it won't work.

From the Etherchannel Software Configuration Guide:
Do not configure a private-VLAN port as part of an EtherChannel.

The problem is the ASIC's which are used in the 3750.  

But if the private VLAN is on the 5548, you may be okay.  I've never tried it on that platform and I can't find anything that says you can't.
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Originally, this post was published on Monitis Blog, you can check it here . It goes without saying that technology has transformed society and the very nature of how we live, work, and communicate in ways that would’ve been incomprehensible 5 ye…
WARNING:   If you follow the instructions here, you will wipe out your VTP and VLAN configurations.  Make sure you have backed up your switch!!! I recently had some issues with a few low-end Cisco routers (RV325) and I opened a case with Cisco TA…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…

609 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question