Manualshelf

ProCurve Series 2300 and 2500 Switches Release Notes

ManualsBrandsHP ManualsServerHP NonStop G-Series
21222324252627282930
14
Enhancements in Release F.05.xx
Isolated Port Groups (Enhanced)
Multiple VLANs are not allowed on the switch. If multiple VLANs exist on the switch, delete
them and return the ports to the original default configuration as untagged members of VLAN
1. (VLAN configuration changes are not supported if port-isolation is running on the switch.)
Trunking is supported only on Uplink ports between switches. Remove any other port
trunking from the switch.
LACP is allowed only on the Uplink ports. For security, LACP (active or passive) must be
disabled on all other ports on the switch. To disable LACP active or passive on the switch’s
ports, use this command syntax:
no int e < port-numbers > lacp
GVRP must be disabled (the default).
IGMP operates only in non-data-driven mode, and works only on uplink ports. The switch
floods multicast IP traffic arriving at non-uplink ports.
A Series 2500 switch with port-isolation enabled cannot export its port-isolation configura-
tion. However, a Series 2500 configuration file on a server can include port-isolation
commands.
The Isolated Port Groups feature operates within the context of the individual switch. It does
not restrict free communication on the designated uplink port(s) to other devices on the
network. A node connected to any non-local port (group1, group2, private, etc.) on one Series
2500 switch can communicate with a node connected to any non-local port (group1, group2,
private, etc.) on another Series 2500 switch if the two switches are connected through their
uplink ports.
Enabling port isolation and configuring individual ports to specific, non-default modes are
separate steps. You must first enable port isolation. When you do so, all ports are configured
in the (default) Uplink mode.
Configuring Port Isolation on the Switch
Steps for Configuring Port Isolation
1. Remove all non-default VLANs from the switch and ensure that all ports are untagged members
of the default VLAN (VID = 1).
2. Identify the devices you will connect to the switch’s ports.
3. Configure all equipment you plan to attach to the switch (such as servers and other switches)
to eliminate VLAN tagging on ports connected to the Series 2500 switch(es) on which you are
using Port Isolation.
4. Determine the mode assignment you want for each port on the switch. (When you enable port-
isolation, the switch configures all ports to the default Uplink mode.)