Hi all, I have a scenario that requires broadcasts to be blocked at my main headswitch (WS-C6506_s720 - IOS 12.2(18)SXD7b) which is running as simply a L2 headswitch right now, and not routing. I have two ports going upstream to two 7206VXR routers, and out the door.
This switch feeds 10 IDF closests, all containing C3550-24-PWR running IOS 12.2(44)SE6. I have an end-to-end vlan scenario with VTP pruning, as I need all my vlans available on each switch at any given time.
Quite simply, all I need to accomplish is to block all traffic (broadcasts especially) coming from a host in VLAN100 off switch X, to only reach the router, and not travel to every other switch on the backbone. i.e., a host in VLAN100 on the other side of the building will NOT see this broadcast.
I'm sniffing around Private VLAN configuration in the cat6k on each of the trunk ports feeding the IDFs, but I'm not clear as to how to configure it to ONLY block VLAN100 at the 6k, and still allow all other VLANs to talk across the network freely.
Hope this makes sense Thanks in advance, any config examples would be great.