Installation guide
Command Line Interface
4-258
4
Configuring Port-based Traffic Segmentation
If tighter security is required for passing traffic from different clients through downlink
ports on the local network and over uplink ports to the service provider, port-based
traffic segmentation can be used to isolate traffic for individual client sessions.
Traffic belonging to each client is isolated to the allocated downlink ports. But the
switch can be configured to either isolate traffic passing across a client’s allocated
uplink ports from the uplink ports assigned to other clients, or to forward traffic
through the uplink ports used by other clients, allowing different clients to share
access to their uplink ports where security is less likely to be compromised.
Note: Due to switch ASIC limitations, traffic segmentation is not supported on the
iES4024GP.
This section describes commands used to configure traffic segmentation.
pvlan
This command enables port-based traffic segmentation. Use the no form to disable
this feature.
Syntax
[no] pvlan
Default Setting
Disabled
Command Mode
Global Configuration
Table 4-74 Traffic Segmentation Commands
Command Function Mode Page
pvlan Enables traffic segmentation GC 4-258
pvlan uplink/downlink Configures uplink/downlink ports for client sessions GC 4-259
pvlan session Creates a client session GC 4-260
pvlan up-to-up Specifies whether or not traffic can be forwarded between
uplink ports assigned to different client sessions
GC 4-261
show pvlan Displays the traffic segmentation configuration settings PE 4-261