From: Narbik Kocharians (narbikk@gmail.com)
Date: Sat Feb 28 2009 - 00:22:53 ARST
Hey mate would you like a lab?
On Fri, Feb 27, 2009 at 4:03 PM, David Murray (AU) <
David.Murray3@didata.com.au> wrote:
> Hi Group,
>
> Just a couple of quick questions (well quick if anyone knows the answer!!)
> I am just working on the private vlan section of the switching and bridging
> IE workbook.
>
> What is the difference between
>
> A. switchport private-vlan association host 100 102
> and
> B. switchport private-vlan host-association 100 102
>
> I have a 3560 ((C3560-ADVIPSERVICESK9-M), Version 12.2(25)SEE2) connected
> to 2 identical 2811s ((C2800NM-ADVENTERPRISEK9-M), Version 12.4(3a)).
>
> When I configure them both with (A) one works and one doesn't as per
> below...
> switchport mode private-vlan host
> switchport private-vlan association host 100 102
>
>
> Logs:
> SW3-3560#sh int fast 0/1
> FastEthernet0/4 is up, line protocol is down (notconnect)
>
> Name: Fa0/1
> Switchport: Enabled
> Administrative Mode: private-vlan host
> Operational Mode: down
> Administrative Trunking Encapsulation: negotiate
> Negotiation of Trunking: Off
> Access Mode VLAN: 1 (default)
> Trunking Native Mode VLAN: 1 (default)
> Administrative Native VLAN tagging: enabled
> Voice VLAN: none
> Administrative private-vlan host-association: 100 (VLAN0100) 101 (VLAN0101)
> Administrative private-vlan mapping: none
> Administrative private-vlan trunk native VLAN: none
> Administrative private-vlan trunk Native VLAN tagging: enabled
> Administrative private-vlan trunk encapsulation: dot1q
> Administrative private-vlan trunk normal VLANs: none
> Administrative private-vlan trunk private VLANs: none
> Operational private-vlan: none
> Trunking VLANs Enabled: ALL
> Pruning VLANs Enabled: 2-1001
> Capture Mode Disabled
> Capture VLANs Allowed: ALL
>
> Protected: false
> Unknown unicast blocked: disabled
> Unknown multicast blocked: disabled
> Appliance trust: none
> When I configure them both with (B) they both work!!!!!
> switchport mode private-vlan host
> switchport private-vlan host-association 100 102
>
> FastEthernet0/2 is up, line protocol is up (connected)
> Switchport: Enabled
> Administrative Mode: private-vlan host
> Operational Mode: private-vlan host
> Administrative Trunking Encapsulation: negotiate
> Operational Trunking Encapsulation: native
> Negotiation of Trunking: Off
> Access Mode VLAN: 1 (default)
> Trunking Native Mode VLAN: 1 (default)
> Administrative Native VLAN tagging: enabled
> Voice VLAN: none
> Administrative private-vlan host-association: 100 (VLAN0100) 101 (VLAN0101)
> Administrative private-vlan mapping: none
> Administrative private-vlan trunk native VLAN: none
> Administrative private-vlan trunk Native VLAN tagging: enabled
> Administrative private-vlan trunk encapsulation: dot1q
> Administrative private-vlan trunk normal VLANs: none
> Administrative private-vlan trunk private VLANs: none
> Operational private-vlan:
> 100 (VLAN0100) 101 (VLAN0101)
> Trunking VLANs Enabled: ALL
> Pruning VLANs Enabled: 2-1001
> Capture Mode Disabled
> Capture VLANs Allowed: ALL
>
>
> Then to make matters worse (for me!!) I have a dot1q trunk connection from
> one 3560 to an identical 3560. Fast 0/4 is configured exactly as fast 0/1 in
> the above (I have tried scenario A & B) and still the interface stays in a
> non operational mode (3560 interface is up, line protocol is down (not
> connect)
>
> I should mention that there is no other config on the ports of the 3560 and
> the 2811 ports simply have an ip address and are not shutdown.
>
> Has anyone seen this before or recognise it as a bug? I had a very quick
> bug scrub, will have a more detailed look later, just thought I would throw
> it out and see what you guys think.
>
> Thanks
>
>
>
> ******************************************************************************
> - NOTICE FROM DIMENSION DATA AUSTRALIA
> This message is confidential, and may contain proprietary or legally
> privileged information. If you have received this email in error, please
> notify the sender and delete it immediately.
>
> Internet communications are not secure. You should scan this message and
> any attachments for viruses. Under no circumstances do we accept liability
> for any loss or damage which may result from your receipt of this message or
> any attachments.
>
> ******************************************************************************
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
>
>
>
>
>
>
>
-- Narbik Kocharians CCSI#30832, CCIE# 12410 (R&S, SP, Security) www.MicronicsTraining.com www.Net-Workbooks.com Sr. Technical InstructorBlogs and organic groups at http://www.ccie.net
This archive was generated by hypermail 2.1.4 : Sun Mar 01 2009 - 09:44:13 ARST