Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 207
  • Last Modified:

PVLAN configuration

Hi

Please see my diagram.

On Switch 1 I have a SVI with ip address 192.168.0.1/24 for vlan 200 no PVLAN’s are configured on switch 1.

Between my switches is an etherchannel that is in trunk mode all vlans are allowed.
On switch 2 I have a PVLAN’s configured.

Primary vlan is 200 and secondary vlan is 99 isolated.
My question is will my pc on switch 2 be able to ping the SVI and access all servers on my remote subnets via SVI gateway when pc is in secondary vlan 99 on switch 2
diagram.jpg
0
ciscosupp
Asked:
ciscosupp
  • 6
  • 5
1 Solution
 
Don JohnstonInstructorCommented:
Yes, assuming that the Switch-2 port which connects to Switch-1 is a promiscuous port.
0
 
ciscosuppAuthor Commented:
Nope it’s not because LACP (etherchannel) is not supporting promiscuous trunk.
Any other solution how I can get it to work.
0
 
Don JohnstonInstructorCommented:
Sorry.  Missed the etherchannel.

No workaround for that.  Etherchannel is incompatible with all PVLAN components.
0
What Kind of Coding Program is Right for You?

There are many ways to learn to code these days. From coding bootcamps like Flatiron School to online courses to totally free beginner resources. The best way to learn to code depends on many factors, but the most important one is you. See what course is best for you.

 
ciscosuppAuthor Commented:
But when I also configure PVLAN’s on switch 1 will it work and what must I still configure  under my SVI interface to make it work.
0
 
Don JohnstonInstructorCommented:
With an etherchannel between the two switches?  You can't make that work.
0
 
ciscosuppAuthor Commented:
But won’t it work when I configure normal trunk between switch 2 and 1 so my primary vlan id and secondary vlan id will be tagged normally over  etherchannel trunk and configure a SVI on switch 1 as promiscuous port.
Please advice
0
 
Don JohnstonInstructorCommented:
What model switches and what IOS version?
0
 
ciscosuppAuthor Commented:
SW2 3750x Latest firmware SW1  Nexus 5548U Latest firmware
0
 
Don JohnstonInstructorCommented:
What version number please?
0
 
ciscosuppAuthor Commented:
15.2.3E  ED
c3750e-universalk9-mz.152-3.E.bin

and


for nexus Release 7.1(0)N1(1a)
0
 
Don JohnstonInstructorCommented:
If you are going to have a private VLAN over an etherchannel link on a 3750, it won't work.

From the Etherchannel Software Configuration Guide:
Do not configure a private-VLAN port as part of an EtherChannel.

The problem is the ASIC's which are used in the 3750.  

But if the private VLAN is on the 5548, you may be okay.  I've never tried it on that platform and I can't find anything that says you can't.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 6
  • 5
Tackle projects and never again get stuck behind a technical roadblock.
Join Now