Configuring Private VLANs
This chapter contains the following sections:
•
•
•
•
•
Information About Private VLANs
A private VLAN (PVLAN) partitions the Ethernet broadcast domain of a VLAN into subdomains, allowing
you to isolate the ports on the switch from each other. A subdomain consists of a primary VLAN and one or
more secondary VLANs (see the following figure). All VLANs in a PVLAN domain share the same primary
VLAN. The secondary VLAN ID differentiates one subdomain from another. The secondary VLANs can
either be isolated VLANs or community VLANs. A host on an isolated VLAN can communicate only with
OL-29545-03
Information About Private VLANs, page 19
Guidelines and Limitations for Private VLANs, page 23
Configuring a Private VLAN, page 24
Configuring VLAN Mapping for Selective Q-in-Q on a Private VLAN Secondary Trunk Port, page
35
Verifying the Private VLAN Configuration, page 36
Cisco Nexus 3000 Series NX-OS Layer 2 Switching Configuration Guide, Release 6.x
4
C H A P T E R
19