Configuring Private VLANs

4 Command Line Interface

Private VLANs provide port-based security and isolation between ports within the assigned VLAN. This switch supports two types of private VLANs: primary/ secondary associated groups, and stand-alone isolated VLANs. A primary VLAN contains promiscuous ports that can communicate with all other ports in the private VLAN group, while a secondary (or community) VLAN contains community ports that can only communicate with other hosts within the secondary VLAN and with any of the promiscuous ports in the associated primary VLAN. Isolated VLANs, on the other hand, consist a single stand-alone VLAN that contains one promiscuous port and one or more isolated (or host) ports. In all cases, the promiscuous ports are designed to provide open access to an external network such as the Internet, while the community or isolated ports provide restricted access to local users.

Multiple primary VLANs can be configured on this switch, and multiple community VLANs can be associated with each primary VLAN. One or more isolated VLANs can also be configured. (Note that private VLANs and normal VLANs can exist simultaneously within the same switch.)

This section describes commands used to configure private VLANs.

Table 4-55 Private VLAN Commands

Command	Function	Mode	Page
Edit Private VLAN Groups

private-vlan	Adds or deletes primary, community, or isolated VLANs	VC	4-159

private-vlan association	Associates a community VLAN with a primary VLAN	VC	4-160

Configure Private VLAN Interfaces

switchport mode	Sets an interface to host mode or promiscuous mode	IC	4-161
private-vlan
switchport private-vlan	Associates an interface with a secondary VLAN	IC	4-161
host-association
switchport private-vlan	Associates an interface with an isolated VLAN.	IC	4-162
isolated
switchport private-vlan	Maps an interface to a primary VLAN	IC	4-163
mapping
Display Private VLAN Information

show vlan private-vlan	Shows private VLAN information	NE,	4-163
		PE

To configure primary/secondary associated groups, follow these steps:

1.Use the private-vlancommand to designate one or more community VLANs and the primary VLAN that will channel traffic outside of the community groups.

2.Use the private-vlan association command to map the community VLAN(s) to the primary VLAN.

4-158

GSW-2692 specifications

The LevelOne GSW-2692 is an advanced Layer 2 Gigabit Ethernet switch that is designed to cater to the networking needs of both small and medium-sized enterprises. Highly regarded for its reliability and performance, the GSW-2692 offers 24 Gigabit Ethernet ports, enabling seamless and high-speed data transfers across connected devices. With its robust design and versatile capabilities, this switch has earned its place as an essential component in modern IT infrastructure.

One of the standout features of the GSW-2692 is its extensive support for advanced networking technologies. The switch includes support for IEEE 802.1Q VLAN tagging, which allows users to create separate virtual networks for improved traffic management and enhanced security. By segregating network traffic, businesses can optimize bandwidth usage and reduce congestion, contributing to overall increased network performance.

Additionally, the GSW-2692 supports Spanning Tree Protocol (STP) and Rapid Spanning Tree Protocol (RSTP), ensuring loop-free network topology. This capability is crucial in larger networking environments where multiple switches are interconnected, as it prevents broadcast storms and enhances network resilience. The switch also includes features such as port mirroring, which provides administrators with the capability to monitor network traffic in real-time for troubleshooting and analysis.

Power over Ethernet (PoE) support is another significant advantage of the GSW-2692. With PoE functionality, it enables the switch to deliver electrical power along with data to connected devices such as IP cameras, VoIP phones, and wireless access points, eliminating the need for additional power sources and simplifying installations.

In terms of physical characteristics, the LevelOne GSW-2692 is designed for efficient heat dissipation and features a fanless design, which ensures silent operation. Its desktop or rack-mountable options make it flexible for various installation environments. The switch also features a web-based management interface, which simplifies the configuration and monitoring processes, allowing for intuitive management of network settings.

Overall, the LevelOne GSW-2692 stands out as a feature-rich, reliable, and high-performance networking solution that meets the demands of modern enterprises. Its combination of advanced technologies, scalability, and ease of use makes it an excellent choice for businesses looking to enhance their network infrastructure.

LevelOne GSW-2692 manual Configuring Private VLANs, Private Vlan Commands

Models: GSW-2692

4 Command Line Interface