Only one promiscuous port is allowed per single PVLAN, and it serves all the community and
isolated VLANs in the Private VLAN.
Isolated: An isolated PVLAN port has complete Layer 2 segregation from all the other ports within the
same PVLAN, but not from the promiscuous ports. Traffic from the isolated port is forwarded only to the
promiscuous ports and none other.
Community: Community ports are logically combined groups of ports in a common community and can
pass traffic among themselves and with promiscuous ports. Ports are separated at Layer 2 from all other
interfaces in other communities or isolated ports within their PVLAN.
Figure 4-1a. PVLAN Components
It is possible for isolated and community port traffic to enter or leave the switch through a trunk interface
because trunks support VLANs carrying traffic among isolated, community, and promiscuous ports. Hence,
PVLAN ports are associated with a separate set of VLANs that are used to create the PVLAN structure. A PVLAN
uses VLANs in following three ways:
As a primary VLAN: Carries traffic from a promiscuous port to isolated, community, and other
promiscuous ports in the same primary VLAN.
As an isolated VLAN: Carries traffic from isolated ports to a promiscuous port.
Pages:
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172