Reference Guide

ManualsBrandsDell ManualsComputer equipmentNetworking Z9500

821

822

823

824

825

826

827

828

829

830

Table 71. VLAN Membership and MAC Synchronization With VLT Nodes in PVLAN (continued)

VLT LAG Mode PVLAN Mode of VLT VLAN ICL VLAN

Membership

Mac

Synchronization

Peer1 Peer2 Peer1 Peer2

Access Access Secondary

(Community)

Secondary

(Community)

Yes Yes

- Primary VLAN X - Primary VLAN X Yes Yes

Access Access Secondary (Isolated) Secondary (Isolated) Yes Yes

- Primary VLAN X - Primary VLAN X Yes Yes

Access Access Secondary (Isolated) Secondary (Isolated) No No

- Primary VLAN X - Primary VLAN Y No No

Access Access Secondary

(Community)

Secondary

(Community)

No No

- Primary VLAN Y - Primary VLAN X No No

Promiscuous Access Primary Secondary No No

Trunk Access Primary/Normal Secondary No No

Configuring a VLT VLAN or LAG in a PVLAN

You can configure the VLT peers or nodes in a private VLAN (PVLAN). Because the VLT LAG interfaces are terminated on two

different nodes, PVLAN configuration of VLT VLANs and VLT LAGs are symmetrical and identical on both the VLT peers.

PVLANs provide Layer 2 isolation between ports within the same VLAN. A PVLAN partitions a traditional VLAN into subdomains

identified by a primary and secondary VLAN pair. With VLT being a Layer 2 redundancy feature, support for configuration of VLT

nodes in a PVLAN enables Layer 2 security functionalities to be achieved. This section contains the following topics that

describe how to configure a VLT VLAN or a VLT LAG (VLTi link) and assign that VLT interface to a PVLAN.

Creating a VLT LAG or a VLT VLAN

1. Configure the port channel for the VLT interconnect on a VLT switch and enter interface configuration mode

CONFIGURATION mode

interface port-channel id-number.

Enter the same port-channel number configured with the peer-link port-channel command as described in Enabling

VLT and Creating a VLT Domain.

NOTE: To be included in the VLTi, the port channel must be in Default mode (no switchport or VLAN assigned).

2. Remove an IP address from the interface.

INTERFACE PORT-CHANNEL mode

no ip address

3. Add one or more port interfaces to the port channel.

INTERFACE PORT-CHANNEL mode

channel-member interface

interface: specify one of the following interface types:

● 1-Gigabit Ethernet: Enter gigabitethernet slot/port.

● 10-Gigabit Ethernet: Enter tengigabitethernet slot/port.

824

Virtual Link Trunking (VLT)