Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
846
Views
0
Helpful
0
Replies

C9200L and private vlan

MikkoPeltokangas43728
Level 1
Level 1

‎06-14-2021 09:36 AM

Hi, I have little problem with pvlan and community vlan. I have these lines before ports:

 

vtp mode transparent

!

vlan 68
private-vlan primary
private-vlan association 1058-1059
!
vlan 1058
private-vlan isolated
!
vlan 1059
private-vlan community

 

and at isolated port I have this config:


interface GigabitEthernet1/0/1
description cash_register
switchport private-vlan host-association 68 1058
switchport mode private-vlan host
switchport port-security violation restrict
switchport port-security
ip arp inspection limit rate 2048
ipv6 nd raguard
mac access-group dropnonip in
spanning-tree portfast
ip verify source

 

and community_ports are like this:

interface GigabitEthernet1/0/20
switchport private-vlan host-association 68 1059
switchport mode private-vlan host
spanning-tree portfast
ip verify source
!
interface GigabitEthernet1/0/21
switchport private-vlan host-association 68 1059
switchport mode private-vlan host
spanning-tree portfast
ip verify source
!

 

..and also I have promiscious port too:

interface GigabitEthernet1/0/47
description trunk
switchport private-vlan mapping 68 1058-1059
switchport mode private-vlan promiscuous
ip arp inspection trust
ip arp inspection limit rate 2048
ip dhcp snooping trust
!

 

But, what I'm doing wrong because my ports 20 and 21 cannot even ping themselves?

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card