• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 221
  • Last Modified:

PVLAN configuration

Hi

Please see my diagram.

On Switch 1 I have a SVI with ip address 192.168.0.1/24 for vlan 200 no PVLAN’s are configured on switch 1.

Between my switches is an etherchannel that is in trunk mode all vlans are allowed.
On switch 2 I have a PVLAN’s configured.

Primary vlan is 200 and secondary vlan is 99 isolated.
My question is will my pc on switch 2 be able to ping the SVI and access all servers on my remote subnets via SVI gateway when pc is in secondary vlan 99 on switch 2
diagram.jpg
0
ciscosupp
Asked:
ciscosupp
  • 6
  • 5
1 Solution
 
Don JohnstonInstructorCommented:
Yes, assuming that the Switch-2 port which connects to Switch-1 is a promiscuous port.
0
 
ciscosuppAuthor Commented:
Nope it’s not because LACP (etherchannel) is not supporting promiscuous trunk.
Any other solution how I can get it to work.
0
 
Don JohnstonInstructorCommented:
Sorry.  Missed the etherchannel.

No workaround for that.  Etherchannel is incompatible with all PVLAN components.
0
Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

 
ciscosuppAuthor Commented:
But when I also configure PVLAN’s on switch 1 will it work and what must I still configure  under my SVI interface to make it work.
0
 
Don JohnstonInstructorCommented:
With an etherchannel between the two switches?  You can't make that work.
0
 
ciscosuppAuthor Commented:
But won’t it work when I configure normal trunk between switch 2 and 1 so my primary vlan id and secondary vlan id will be tagged normally over  etherchannel trunk and configure a SVI on switch 1 as promiscuous port.
Please advice
0
 
Don JohnstonInstructorCommented:
What model switches and what IOS version?
0
 
ciscosuppAuthor Commented:
SW2 3750x Latest firmware SW1  Nexus 5548U Latest firmware
0
 
Don JohnstonInstructorCommented:
What version number please?
0
 
ciscosuppAuthor Commented:
15.2.3E  ED
c3750e-universalk9-mz.152-3.E.bin

and


for nexus Release 7.1(0)N1(1a)
0
 
Don JohnstonInstructorCommented:
If you are going to have a private VLAN over an etherchannel link on a 3750, it won't work.

From the Etherchannel Software Configuration Guide:
Do not configure a private-VLAN port as part of an EtherChannel.

The problem is the ASIC's which are used in the 3750.  

But if the private VLAN is on the 5548, you may be okay.  I've never tried it on that platform and I can't find anything that says you can't.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Improve Your Query Performance Tuning

In this FREE six-day email course, you'll learn from Janis Griffin, Database Performance Evangelist. She'll teach 12 steps that you can use to optimize your queries as much as possible and see measurable results in your work. Get started today!

  • 6
  • 5
Tackle projects and never again get stuck behind a technical roadblock.
Join Now