Manualshelf

Installation manual

ManualsBrandsSignaMax ManualsComputer equipmentF0-065-1200 Series
241242243244245246247248249250
3-199
SIGNAMAX LLC • www.signamax.eu
Private VLANs
Private VLANs provide port-based security and isolation between ports within
the assigned VLAN. This switch supports private VLANs with primary/secondary
associated groups. A primary VLAN contains promiscuous ports that can communicate
with all other ports in the private VLAN group, while a secondary (or community) VLAN
contains community ports that can only communicate with other hosts within the
secondary VLAN and with any of the promiscuous ports in the associated primary VLAN.
In all cases, the promiscuous ports are designed to provide open access to an external
network such as the Internet, while the community ports provide restricted access to local
users.
Multiple primary VLANs can be configured on this switch, and multiple community VLANs
can be associated with each primary VLAN. (Note that private VLANs and normal VLANs
can exist simultaneously within the same switch.)
To configure primary/secondary associated groups, follow these steps:
1. Use the Private VLAN Configuration menu (page 3-200) to designate one or more
community VLANs, and the primary VLAN that will channel traffic outside of the
VLAN groups.
2. Use the Private VLAN Association menu (page 3-201) to map the secondary (i.e.,
community) VLAN(s) to the primary VLAN.
3. Use the Private VLAN Port Configuration menu (page 3-203) to set the port type to
promiscuous (i.e., having access to all ports in the primary VLAN), or host (i.e.,
having access restricted to community VLAN members, and channeling all other
traffic through promiscuous ports). Then assign any promiscuous ports to a primary
VLAN and any host ports a community VLAN.
Displaying Current Private VLANs
The Private VLAN Information page displays information on the private VLANs configured
on the switch, including primary, community, and isolated VLANs, and their assigned
interfaces.
Command Attributes
VLAN ID – ID of configured VLAN (1-4092), and VLAN type.
Primary VLAN – The VLAN with which the selected VLAN ID is associated. A primary
VLAN displays its own ID, a community VLAN displays the associated primary VLAN,
and an isolated VLAN displays the stand-alone VLAN.
Ports List – The list of ports (and assigned port type) in the selected private VLAN.