03-14-2013 04:46 AM - last edited on 03-25-2019 04:24 PM by ciscomoderator
Hi ,
I have 2960 cisco switch. I want to configure private vlan. But it is not getting configured in cisco 2960. Is there any other way to configure that in switch.
Sent from Cisco Technical Support iPad App
03-14-2013 07:11 AM
Hi Pankaj,
Private VLAN is not support on a CAT2960 switch. The
supported feature is “Private VLAN Edge (Protected Port)”, which is a limited subset of
the full Private VLAN feature.
What is the difference between the Private VLAN Edge (Protected Port) and Private VLAN
features?
A. The Private VLAN Edge feature also known as the Protected Port feature, is a limited
subset of the full Private VLAN feature. The Private VLAN feature supports primary and
secondary VLANs and Community and Isolated VLANS, whereas Private VLAN Edge only supports
the equivalent of Isolated VLANs.
Private VLAN Catalyst Switch Support Matrix
http://www.cisco.com/en/US/products/hw/switches/ps4324/products_tech_note09186a0080094830.
shtml#topic1
Table 7 Port Security Compatibility with Other Switch Features
http://www.cisco.com/univercd/cc/td/doc/product/lan/cat3560/12225seb/ol7189.htm#wp752604
Under that same confiruation guide if you look under unspportted commands, you see the private-vlan command.
http://www.cisco.com/en/US/docs/switches/lan/catalyst2960/software/release/12.2_55_se/configuration/...
I was not able to find the 2960 supporting PVLAN, however, if on the same local switch you can configure swithchport protected , which isolates that port from other protected ports as well. I believe this might be what they are referring to when they say private vlan edge.
More info below for your reference.
Some applications require that no traffic be forwarded at Layer 2 between ports on the same switch so that one neighbor does not see the traffic generated by another neighbor. In such an environment, the use of protected ports ensures that there is no exchange of unicast, broadcast, or multicast traffic between these ports on the switch.
Protected ports have these features:
•A protected port does not forward any traffic (unicast, multicast, or broadcast) to any other port that is also a protected port. Data traffic cannot be forwarded between protected ports at Layer 2; only control traffic, such as PIM packets, is forwarded because these packets are processed by the CPU and forwarded in software. All data traffic passing between protected ports must be forwarded through a Layer 3 device.
•Forwarding behavior between a protected port and a nonprotected port proceeds as usual.
http://www.cisco.com/en/US/docs/switches/lan/catalyst2960/software/release/12.2_55_se/configuration/...
HTH
Regards
Inayath
*Plz rate the usefull posts.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide