Private vlan, Pvlan configuration – Comtrol ES7510-XT User Manual
Page 98
98 - Private VLAN
RocketLinx ES7510-XT User Guide: 2000571
Rev. D
Configuration Using the Web Interface
Private VLAN
A private VLAN helps to resolve the primary VLAN ID shortage, client ports’ isolation and network security
issues. The private VLAN features provides primary and secondary VLANs within a single switch.
Primary VLAN: The uplink port is usually a member of the primary VLAN. A primary VLAN contains
promiscuous ports that can communicate with Secondary VLANs.
Secondary VLAN: The client ports are usually defined within secondary VLAN. The secondary VLAN includes
Isolated and Community VLANs. The client ports can be isolated VLANs or can be grouped in the same
Community VLAN. The ports within the same community VLAN can communicate with each other, however,
the isolated VLAN ports cannot.
This figure shows a typical private VLAN network. A SCADA/Public Server or NMS workstation is usually
located in a primary VLAN. Client PCs and rings are usually located within the secondary VLAN.
The following web pages are in this group:
•
•
•
Optionally, you can use the CLI for configuration, see
PVLAN Configuration
PVLAN Configuration allows you to assign a private VLAN type. Choose the
private VLAN types for each VLAN you want configure.
Note: You must have previously configured a VLAN in the VLAN Configuration
screen. Refer to
on Page 93 for information.
Private VLAN Configuration Page
VLAN ID
•
Primary VLAN - The uplink port is usually the primary
VLAN. Ports within a primary VLAN can communicate with
ports in a secondary VLAN
•
Secondary VLAN - The client ports are usually defined within
secondary VLAN. The secondary VLAN includes Isolated
VLAN and Community VLANs. The client ports can be
isolated VLANs or can be grouped in the same Community
VLAN. The ports within the same community VLAN can
communicate with each other. However, the isolated VLAN
ports cannot.