From: Nadeem Lughmani (lughmani@gmail.com)
Date: Tue Mar 21 2006 - 22:49:55 GMT-3
Hi All,
To understand Private vlans one needs to understand Primary and Secondary
vlans. Secondary vlans can be of two types
Isolated- Any switch ports associated with an isolated VLAN can reach the
primary VLAN but not any other secondary VLAN. In addition, hosts associated
with the same isolated VLAN cannot reach each other. They are, in effect,
isolated from everything except the primary VLAN.
Community- Any switch ports associated with a common community VLAN can
communicate with each other and with the primary VLAN but not with any other
secondary VLAN. This provides the basis for server farms and workgroups
within an organization, while giving isolation between organizations.
I understand the logic behind the Isolated, but Community seems to be just
like any other (normal) vlan, where hosts within a vlan can communicate with
each other at layer2
If you have better explanation, why community was required , please let me
know.
Thanks
Nadeem
This archive was generated by hypermail 2.1.4 : Sat Apr 01 2006 - 10:07:39 GMT-3