Configuring the primary vlan – Brocade BigIron RX Series Configuration Guide User Manual

Page 395

Advertising
background image

BigIron RX Series Configuration Guide

317

53-1002484-04

Private VLANs

11

BigIron RX(config)# vlan 901

BigIron RX(config-vlan-901)# untagged ethernet 3/5 to 3/6

BigIron RX(config-vlan-901)# pvlan type community

These commands create port-based VLAN 901, add ports 3/5 and 3/6 to the VLAN as untagged
ports, then specify that the VLAN is a community private VLAN.

Syntax: untagged ethernet [to <portnum> | ethernet <portnum>]

Syntax: [no] pvlan type community | isolated | primary

The untagged command adds the ports to the VLAN.

The pvlan type command specifies that this port-based VLAN is a private VLAN.

community – Broadcasts and unknown unicasts received on community ports are sent to the
primary port and also are flooded to the other ports in the community VLAN.

isolated – Broadcasts and unknown unicasts received on isolated ports are sent only to the
primary port. They are not flooded to other ports in the isolated VLAN.

primary – The primary private VLAN ports are “promiscuous”. They can communicate with all
the isolated private VLAN ports and community private VLAN ports in the isolated and
community VLANs that are mapped to the promiscuous port.

Configuring the primary VLAN

Use the following CLI method to configure the primary VLAN.

Using the CLI

To configure a primary private VLAN, enter commands such as the following.

BigIron RX(config)# vlan 7
BigIron RX(config-vlan-7)# untagged ethernet 3/2
BigIron RX(config-vlan-7)# pvlan type primary
BigIron RX(config-vlan-7)# pvlan mapping 901 ethernet 3/2

These commands create port-based VLAN 7, add port 3/2 as an untagged port, identify the VLAN
as the primary VLAN in a private VLAN, and map the other private VLANs to the ports in this VLAN.

Syntax: untagged ethernet <portnum> [to <portnum> | ethernet <portnum>]

Syntax: [no] pvlan type community | isolated | primary

Syntax: [no] pvlan mapping <vlan-id> ethernet <portnum>

The untagged command adds the ports to the VLAN.

The pvlan type command specifies that this port-based VLAN is a private VLAN. Specify primary as
the type.

The pvlan mapping command identifies the other private VLANs for which this VLAN is the primary.
The command also specifies the primary VLAN ports to which you are mapping the other private
VLANs.

The <vlan-id> parameter specifies another private VLAN. The other private VLAN you want to
specify must already be configured.

The ethernet <portnum> parameter specifies the primary VLAN port to which you are mapping
all the ports in the other private VLAN (the one specified by <vlan-id>).

Advertising
Popular Brands
Popular manuals