mac_2 2 port 2
mac_3 3 port 3
Table 6-6 MAC address table before duplication
Destination MAC VLAN Egress Port
mac_a 5 port 5
mac_a 2 port 5
mac_a 3 port 5
mac_2 2 port 2
mac_2 5 port 2
mac_3 3 port 3
mac_3 5 port 3
Table 6-7 MAC address table after duplication
Packet forwarding in Private VLAN
The Private VLAN packet forwarding process (here we take traffic transmission for PC2) based on
the figure above is illustrated as follows:
1) PC2 sends out its first upstream packet with the source MAC as mac_2 and the
destination MAC as mac_a. This packet is untagged.
2) When the host port Port2 on the switch receives this packet, it adds a default VLAN ID
2 to this packet and learns its source MAC address. The MAC address entry,
mac_2+VLAN2+Port2 is created, indicating that the egress port for the traffic with
destination MAC address mac_2 and VLAN ID 2 is Port2.
3) According to the MAC address duplication, this MAC address entry is copied to VLAN
5, and the switch adds the MAC address entry mac_2+VLAN5+Port2 to its address
table.
4) As mac_a is not in the MAC address table of the switch, the switch will broadcast this
packet in VLAN 2.
5) As the switch has performed the port configuration synchronization, Port5 can receive
this packet from VLAN 2 and forward it to the Router untagged.
6) The Router responds to the switch upon receiving this packet.
71