Solved

PVLAN configuration

Posted on 2015-02-10
11
153 Views
Last Modified: 2015-02-28
Hi

Please see my diagram.

On Switch 1 I have a SVI with ip address 192.168.0.1/24 for vlan 200 no PVLAN’s are configured on switch 1.

Between my switches is an etherchannel that is in trunk mode all vlans are allowed.
On switch 2 I have a PVLAN’s configured.

Primary vlan is 200 and secondary vlan is 99 isolated.
My question is will my pc on switch 2 be able to ping the SVI and access all servers on my remote subnets via SVI gateway when pc is in secondary vlan 99 on switch 2
diagram.jpg
0
Comment
Question by:ciscosupp
  • 6
  • 5
11 Comments
 
LVL 50

Expert Comment

by:Don Johnston
Comment Utility
Yes, assuming that the Switch-2 port which connects to Switch-1 is a promiscuous port.
0
 

Author Comment

by:ciscosupp
Comment Utility
Nope it’s not because LACP (etherchannel) is not supporting promiscuous trunk.
Any other solution how I can get it to work.
0
 
LVL 50

Expert Comment

by:Don Johnston
Comment Utility
Sorry.  Missed the etherchannel.

No workaround for that.  Etherchannel is incompatible with all PVLAN components.
0
 

Author Comment

by:ciscosupp
Comment Utility
But when I also configure PVLAN’s on switch 1 will it work and what must I still configure  under my SVI interface to make it work.
0
 
LVL 50

Expert Comment

by:Don Johnston
Comment Utility
With an etherchannel between the two switches?  You can't make that work.
0
Highfive Gives IT Their Time Back

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

 

Author Comment

by:ciscosupp
Comment Utility
But won’t it work when I configure normal trunk between switch 2 and 1 so my primary vlan id and secondary vlan id will be tagged normally over  etherchannel trunk and configure a SVI on switch 1 as promiscuous port.
Please advice
0
 
LVL 50

Expert Comment

by:Don Johnston
Comment Utility
What model switches and what IOS version?
0
 

Author Comment

by:ciscosupp
Comment Utility
SW2 3750x Latest firmware SW1  Nexus 5548U Latest firmware
0
 
LVL 50

Expert Comment

by:Don Johnston
Comment Utility
What version number please?
0
 

Author Comment

by:ciscosupp
Comment Utility
15.2.3E  ED
c3750e-universalk9-mz.152-3.E.bin

and


for nexus Release 7.1(0)N1(1a)
0
 
LVL 50

Accepted Solution

by:
Don Johnston earned 500 total points
Comment Utility
If you are going to have a private VLAN over an etherchannel link on a 3750, it won't work.

From the Etherchannel Software Configuration Guide:
Do not configure a private-VLAN port as part of an EtherChannel.

The problem is the ASIC's which are used in the 3750.  

But if the private VLAN is on the 5548, you may be okay.  I've never tried it on that platform and I can't find anything that says you can't.
0

Featured Post

Highfive Gives IT Their Time Back

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

AWS has developed and created its highly available global infrastructure allowing users to deploy and manage their estates all across the world through the use of the following geographical components   RegionsAvailability ZonesEdge Locations  Wh…
Let’s list some of the technologies that enable smooth teleworking. 
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

7 Experts available now in Live!

Get 1:1 Help Now