From: Joseph Brunner (joe@affirmedsystems.com)
Date: Wed Jun 18 2008 - 18:16:26 ART
on this note; 3750 vs. 6509 sup 720
3750_7th_Stack1(config)#int g1/0/13
3750_7th_Stack1(config-if)#switchport mode private-vlan
3750_7th_Stack1(config-if)#switchport mode private-vlan host
3750_7th_Stack1(config-if)#switchport port-security
Command rejected: GigabitEthernet1/0/13 is a pvlan host port.
3750_7th_Stack1(config-if)#
sup720
interface GigabitEthernet8/1
description description vlan, PN-VL-DBASE-01 host, PS-DB-CORE-01 #2
switchport
switchport access vlan 555
switchport mode private-vlan host
switchport port-security
switchport port-security mac-address sticky
no ip address
spanning-tree portfast
end
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Sadiq Yakasai
Sent: Wednesday, June 18, 2008 4:40 PM
To: John
Cc: Akhtar Rasool; Cisco certification
Subject: Re: Private Vlan limitation
Hmmm, thats a tricky one John. This is an excerpt from the documentation for
the feature: "Do not configure ports that belong to a PAgP or LACP
EtherChannel as private VLAN ports. While a port is part of the private VLAN
configuration, any EtherChannel configuration for it is inactive."
http://www.cisco.com/en/US/docs/switches/lan/catalyst3560/software/release/1
2.2_44_se/configuration/guide/swpvlan.html
I think its a tricky one. Some releases for the Cat6Ks dont actually support
pVLANs. What IOS are you running?
Anyway, what about L2/MAC ACLs? VACLs? Those are some options that you have
anyway...
HTH a little.
Sadiq
This archive was generated by hypermail 2.1.4 : Tue Jul 01 2008 - 06:23:22 ART