Extending PVLAN from Cisco to Nortel switch

Unanswered Question
Dec 13th, 2007

Hi Sir,

I have configured Private VLAN on a Catalyst 6513 running Cisco IOS software.

VLAN 20 is a primary VLAN and its associated secondary VLAN is VLAN 21 (isolated VLAN).

A Nortel blade switch is connected to the Cat6513. How do I extend the PVLAN to the Nortel switch?

If it were a Cisco switch, I will configure identical PVLAN configurations on the second switch. Then run an ordinary 802.1Q trunk between them.

For Nortel switch, I have no idea.

Please advise.

Thank you.

B.Rgds,

Lim TS

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
hadbou Thu, 12/20/2007 - 06:47

Cisco is aware of VLAN spoofing attacks and recommends that customers apply best practices where possible to reduce the impact of such attacks on their networks. Many best practices are discussed in Cisco's SAFE Blueprint for Layer 2 security:

http://www.cisco.com/en/US/netsol/ns340/ns394/ns171/ns128/networking_solutions_white_paper09186a008014870f.shtml

As mentioned in the Arhont advisory, this is a protocol issue with 802.1q VLANS, and not a vendor-specific issue. However, there are techniques available on Cisco devices that may allow you to reduce your exposure to the mentioned attacks.

Actions

This Discussion