cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
197
Views
0
Helpful
1
Replies

Private vlan problem

ttl-systems
Level 1
Level 1

Ok I have few 3560 switches that support private vlans. I also have 2960 switches that doesn't support p.vlans. Is the configuration in the picture possible? Can the computers on vlan 2001 in switch 2960 communicate with the computers on 3560 that are on the same vlan or will the 3560 know that they shouldn't communicate? And can they communicate with their GW? all vlans go in the trunks.

So can I span the isolated vlan to 2960 and still have its benefits?

1 Reply 1

gpulos
Level 8
Level 8

YES,

this is possible.

if you configure the port(s) of the 3560 that connect to the 2960 as a 'promiscous' port, then YES, the computers on vlan 2001 off the 2960 should be able to communicate with the 2001 computers in the 3560.

use the following commands on the 3560 interface that connects to the 2960:

switch(config-if)# switchport mode private-vlan promiscuous

switch(config-if)# switchport private-vlan mapping 'primary VLAN id'

please see the following link for more private vlan configuration info:

http://www.cisco.com/en/US/products/hw/switches/ps5528/products_configuration_guide_chapter09186a00805b57c2.html

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: