Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
464
Views
0
Helpful
1
Replies

Possible to create a PVLAN on a layer 3 switch

jimontherock
Level 1
Level 1

‎04-10-2013 12:10 PM - edited ‎03-07-2019 12:44 PM

Hi,

I have a Catalyst 4510 that is my core switch for my network and is performing routing for my various subnets. Is it possible to create a PVLAN so that workstations on the various subnets can only communicate with my servers and out to the Internet and can NOT communicate with each other? The problem that I am running into is that based upon my understanding of private vlans, you need to have the uplink port to the router set to promiscuous mode. However, in my case, I don’t have an uplink as the 4510 handles all switching and routing. I tried to apply promiscuous mode to an SVI but was unable to do so.

Any and all information is appreciated!

Thanks,

Jim

Labels:
0 Helpful
1 Reply 1

Steven Clinton
Level 1
Level 1

‎04-11-2013 12:34 AM

I do not believe that you need a promiscuous port, it is just common. You can also make the handoff ports to the servers promiscuous and then place the user ports in an isolated vlan.

Otherwise, you could also use vacls to filter at the vlan level



Sent from Cisco Technical Support iPhone App

0 Helpful
Customers Also Viewed These Support Documents