Step 3. Map secondary VLANs to the SVI (Switched Virtual Interface), which is the Layer 3 VLAN interface
of a primary VLAN to allow Layer 3 switching of PVLAN ingress traffic.
For example, permit routing of secondary VLAN ingress traffic from VLANs 201 to 202 and 301 to
the private VLAN 101 SVI (Layer 3 interface).
Hostname(config)# interface vlan 101
Hostname(config-if)# private-vlan mapping add 201-202,301
Step 4. Configure a Layer 2 interface as an isolated or community port, and associate the Layer 2 port to
the primary VLAN and selected secondary VLAN pair. For example, configure interface FastEthernet
1/1 as a PVLAN host port in community VLAN 201, map it to a private-secondary PVLAN pair,
configure FastEthernet 1/2 as a PVLAN host port in isolated VLAN 301, and map it to a privatesecondary
PVLAN pair.
Hostname(config)# interface Fastethernet 1/1
Hostname(config-if)# switchport mode private-vlan host
Hostname(config-if)# switchport private-vlan host-association 101 201
Hostname(config)# interface Fastethernet 1/2
Hostname(config-if)# switchport mode private-vlan host
Hostname(config-if)# switchport private-vlan host-association 101 301
Step 5. Configure a Layer 2 interface as a PVLAN promiscuous port and map the PVLAN promiscuous port to
the primary VLAN and to the selected secondary VLAN pair.
Pages:
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175