Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Extending PVLAN from Cisco to Nortel switch

Hi Sir,

I have configured Private VLAN on a Catalyst 6513 running Cisco IOS software.

VLAN 20 is a primary VLAN and its associated secondary VLAN is VLAN 21 (isolated VLAN).

A Nortel blade switch is connected to the Cat6513. How do I extend the PVLAN to the Nortel switch?

If it were a Cisco switch, I will configure identical PVLAN configurations on the second switch. Then run an ordinary 802.1Q trunk between them.

For Nortel switch, I have no idea.

Please advise.

Thank you.

B.Rgds,

Lim TS

1 REPLY
Bronze

Re: Extending PVLAN from Cisco to Nortel switch

Cisco is aware of VLAN spoofing attacks and recommends that customers apply best practices where possible to reduce the impact of such attacks on their networks. Many best practices are discussed in Cisco's SAFE Blueprint for Layer 2 security:

http://www.cisco.com/en/US/netsol/ns340/ns394/ns171/ns128/networking_solutions_white_paper09186a008014870f.shtml

As mentioned in the Arhont advisory, this is a protocol issue with 802.1q VLANS, and not a vendor-specific issue. However, there are techniques available on Cisco devices that may allow you to reduce your exposure to the mentioned attacks.

445
Views
0
Helpful
1
Replies