Installation manual
3-197
SIGNAMAX LLC • www.signamax.eu
Traffic Segmentation
If tighter security is required for passing traffic from different clients through downlink ports
on the local network and over uplink ports to the service provider, port-based traffic
segmentation can be used to isolate traffic for individual client sessions.
Traffic belonging to each client is isolated to the allocated downlink ports. But the switch
can be configured to either isolate traffic passing across a client’s allocated uplink ports
from the uplink ports assigned to other clients, or to forward traffic through the uplink ports
used by other clients, allowing different clients to share access to their uplink ports where
security is less likely to be compromised.
Configuring Global Settings for Traffic Segmentation
Use the Traffic Segmentation Status page to enable traffic segmentation, and to block or
forward traffic between uplink ports assigned to different client sessions.
Command Attributes
• Traffic Segmentation Status –
Enables port-based traffic segmentation.
(Default: Disabled)
• Uplink-to-Uplink – Specifies whether or not traffic can be forwarded between uplink
ports assigned to different client sessions. (Default: Blocking)
Web – Click VLAN, Traffic Segmentation, Status. Set the traffic segmentation status or
uplink-to-uplink forwarding mode, and click Apply.
Figure 3-108 Traffic Segmentation Status Configuration
CLI – This example enables traffic segmentation and allows traffic to be forwarded across
the uplink ports assigned to different client sessions.
Console(config)#pvlan 4-254
Console(config)#pvlan up-to-up forwarding 4-257
Console(config)#exit
Console#show pvlan
4-257
Private VLAN Status : Enabled
Uplink-to-Uplink Mode : Forwarding
Session Uplink Ports Downlink Ports
--------- ------------------------------ -----------------------------
1
Console#