Cisco Nexus 5000 Series Switch CLI Software Configuration Guide, NX-OS 4.0(1a)N1 (OL-16597-01, January 2009)
Send feedback to nx5000-docfeedback@cisco.com
7-6
Cisco Nexus 5000 Series Switch CLI Software Configuration Guide
OL-16597-01
Chapter 7 Configuring Private VLANs
Configuring a Private VLAN
• Configuration Guidelines for Private VLANs, page 7-6
• Enabling Private VLANs, page 7-6
• Configuring a VLAN as a Private VLAN, page 7-7
• Associating Secondary VLANs with a Primary Private VLAN, page 7-7
• Configuring an Interface as a Private VLAN Host Port, page 7-8
• Configuring an Interface as a Private VLAN Promiscuous Port, page 7-9
Configuration Guidelines for Private VLANs
When configuring private VLANs, follow these guidelines:
• You must enable private VLANs before the switch can apply the private VLAN functionality.
• You cannot disable private VLANs if the switch has any operational ports in a private VLAN mode.
• Enter the private-vlan synchronize command to map the secondary VLANs to the same Multiple
Spanning Tree (MST) instance as the primary VLAN. See the “Mapping Secondary VLANs to Same
MSTI as Primary VLANs for Private VLANs” section on page 9-16 for more details.
Enabling Private VLANs
You must enable private VLANs on the switch to use the private VLAN functionality.
Note The private VLAN commands do not appear until you enable the private VLAN feature.
To enable private VLAN functionality on the switch, perform this task:
This example shows how to enable the private VLAN feature on the switch:
switch# configure terminal
switch(config)# feature private-vlan
To disable private VLAN functionality, perform this task:
Command Purpose
Step 1
switch# configure terminal
Enters configuration mode.
Step 2
switch(config)# feature private-vlan
Enables the private VLAN feature on the switch.
Command Purpose
switch(config)# no feature private-vlan
Disables the private VLAN feature on the switch.
Note You cannot disable private VLANs if there are
operational ports on the switch that are in
private VLAN mode.