Specifications

ManualsBrandsBlade Network Technologies ManualsComputer AccessoriesG8000

181

182

183

184

185

186

187

188

189

190

170 Implementing IBM System Networking 10Gb Ethernet Switches

Run no protocol-vlan <1-8> at the VLAN level to delete the selected protocol configuration

from the VLAN.

Run show protocol-vlan <1-8> at the VLAN level to display current parameters for the

selected PVLAN.

Private VLANs

This feature is not part of our reference architecture implementation. However, for

completeness, we give a summary of the commands used for configuration and verification in

this section.

For more information about the private VLANs concept, see Chapter 2, “IBM System

Networking Switch 10Gb Ethernet switch features” on page 51.

The following guidelines apply when configuring Private VLANs:

򐂰 The default VLAN 1 cannot be a Private VLAN.

򐂰 The management VLAN 4095 cannot be a Private VLAN. Management ports cannot be

members of Private VLANs.

򐂰 IGMP Snooping must be disabled on isolated VLANs.

򐂰 Each secondary port’s (isolated port and community ports) PVID must match its

corresponding secondary VLAN ID.

򐂰 Ports within a secondary VLAN cannot be members of other VLANs.

򐂰 All VLANs that are part of the Private VLAN must belong to the same Spanning

Tree Group.

Run the following commands to configure Private VLANs:

򐂰 Run private-vlan type primary at the VLAN level to configure the VLAN type as a

Primary VLAN. A Private VLAN must have only one primary VLAN. The primary VLAN

carries unidirectional traffic to ports on the isolated VLAN or to community VLAN.

򐂰 Run private-vlan type community at the VLAN level to configure the VLAN type as a

community VLAN. Community VLANs carry upstream traffic from host ports. A Private

VLAN may have multiple community VLANs.

򐂰 Run private-vlan type isolated at the VLAN level to configure the VLAN type as an

isolated VLAN. The isolated VLAN carries unidirectional traffic from host ports. A Private

VLAN may have only one isolated VLAN.

򐂰 Run no private-vlan type to clear the private-VLAN type.

򐂰 Run [no] private-vlan map [<2-4094>] to configure Private VLAN mapping between a

secondary VLAN and a primary VLAN. Enter the primary VLAN ID. Secondary VLANs

have the type defined as isolated or community. Use the no parameter to remove the

mapping between the secondary VLAN and the primary VLAN.

򐂰 Run [no] private-vlan enable at the VLAN level to enable/disable the private VLAN.

򐂰 Run show private-vlan [<2-4094>] to display the current parameters for the selected

Private VLAN(s).

5.2.2 Ports and trunking

When using port trunk groups between two switches, you can create a virtual link between

the switches, which operates with combined throughput levels that depend on how many

physical ports are included.