Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
840
Views
5
Helpful
1
Replies

PRIVATE VLAN

CSCO11921629
Level 1
Level 1

‎03-14-2013 04:46 AM - last edited on ‎03-25-2019 04:24 PM by Community Manager

Hi ,
I have 2960 cisco switch. I want to configure private vlan. But it is not getting configured in cisco 2960. Is there any other way to configure that in switch.

Sent from Cisco Technical Support iPad App

pankaj sharma
Labels:
0 Helpful
1 Reply 1

InayathUlla Sharieff
Cisco Employee
Cisco Employee

‎03-14-2013 07:11 AM

Hi Pankaj,

Private VLAN is not support on a CAT2960 switch. The

supported feature is “Private VLAN Edge (Protected Port)”, which is a limited subset of

the full Private VLAN feature.

What is the difference between the Private VLAN Edge (Protected Port) and Private VLAN

features?

A. The Private VLAN Edge feature also known as the Protected Port feature, is a limited

subset of the full Private VLAN feature. The Private VLAN feature supports primary and

secondary VLANs and Community and Isolated VLANS, whereas Private VLAN Edge only supports

the equivalent of Isolated VLANs.

Private VLAN Catalyst Switch Support Matrix

http://www.cisco.com/en/US/products/hw/switches/ps4324/products_tech_note09186a0080094830.

shtml#topic1

Table 7 Port Security Compatibility with Other Switch Features

http://www.cisco.com/univercd/cc/td/doc/product/lan/cat3560/12225seb/ol7189.htm#wp752604

Under that same confiruation guide if you look under unspportted commands, you see the private-vlan command.

http://www.cisco.com/en/US/docs/switches/lan/catalyst2960/software/release/12.2_55_se/configuration/...

I was not able to find the 2960 supporting PVLAN, however, if on the same local switch you can configure swithchport protected , which isolates that port from other protected ports as well. I believe this might be what they are referring to when they say private vlan edge.

More info below for your reference.

Some applications require that no traffic be forwarded at Layer 2 between ports on the same switch so that one neighbor does not see the traffic generated by another neighbor. In such an environment, the use of protected ports ensures that there is no exchange of unicast, broadcast, or multicast traffic between these ports on the switch.

Protected ports have these features:

•A protected port does not forward any traffic (unicast, multicast, or broadcast) to any other port that is also a protected port. Data traffic cannot be forwarded between protected ports at Layer 2; only control traffic, such as PIM packets, is forwarded because these packets are processed by the CPU and forwarded in software. All data traffic passing between protected ports must be forwarded through a Layer 3 device.

•Forwarding behavior between a protected port and a nonprotected port proceeds as usual.

http://www.cisco.com/en/US/docs/switches/lan/catalyst2960/software/release/12.2_55_se/configuration/...

HTH

Regards

Inayath

*Plz rate the usefull posts.

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card