33
Private VLAN
This chapter shows you how to configure the Switch to prevent communications between ports in a VLAN.
33.1 Private VLAN Overview
Private VLAN allows you to do port isolation within a VLAN in a simple way. You specify which port(s) in a VLAN is not isolated by adding it to the promiscuous port list. The Switch automatically adds other ports in this VLAN to the isolated port list and blocks traffic between the isolated ports. A promiscuous port can communicate with any port in the same VLAN. An isolated port can communicate with the promiscuous port(s) only.
Note: You can have up to one private VLAN rule for each VLAN.
Figure 152 Private VLAN Example
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2 |
|
| 6 |
|
|
|
|
|
|
|
|
| 10 | |||||
VLAN 123
Isolated ports: 2 ~ 6
Promiscuous port: 10
Note: Make sure you keep at least one port in the promiscuous port list for a VLAN with private VLAN enabled. Otherwise, this VLAN is blocked from the whole network.
| 315 |
|
|