Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
430
Views
0
Helpful
1
Replies

Private VLAN question

Colin Higgins
Level 2
Level 2

‎01-17-2019 07:11 AM - edited ‎03-08-2019 05:04 PM

When configuring ports for private VLANs, do those ports already need to be in the VLAN per the command "switchport access vlan x"

 

example:

 

I have a primary private vlan 200 and a secondary isolated 201

 

vlan 200

 private-vlan primary 

 

vlan 201

 private-vlan isolated

 

interface GigabitEthernet1/0/1

 switchport

 switchport mode private-vlan host 

 switchport private-vlan host-association 200 201

 

do I ALSO need

 

 switchport access vlan 201

Labels:
0 Helpful
1 Reply 1

Mark Malone
VIP Alumni
VIP Alumni

‎01-17-2019 07:19 AM - edited ‎01-17-2019 07:22 AM

Hi
Some new switches even if you add that it wont show up in the config as its a default command
you can check if a port is in access mode with below command
i know its a requirement for Dot1x/ISE but i never seen it as a requirement for PVLAN

sh int fa0/1 switchport
Name: Fa0/1
Switchport: Enabled
Administrative Mode: static access

 

 

Ignore that above .. read it as switchport mode access :(

You still shouldnt need it though as its covered under host association

0 Helpful
Customers Also Viewed These Support Documents