Configuring the Allowed VLANs for PVLAN Trunking Ports
This example shows how to configure Ethernet interface 1/1 as a promiscuous trunk port for a private VLAN
and then map the secondary VLANs to the primary VLAN:
switch# configure terminal
switch(config)# interface ethernet 1/1
switch(config-if)# switchport mode private-vlan trunk secondary
switch(config-if)# switchport private-vlan association 5 100
switch(config-if)# switchport private-vlan association 6 200
Configuring the Allowed VLANs for PVLAN Trunking Ports
Isolated trunk and promiscuous trunk ports can carry traffic from regular VLANs along with private VLANs.
Before You Begin
Ensure that the private VLAN feature is enabled.
SUMMARY STEPS
1. switch# configure terminal
2. switch(config)# interface type [chassis/]slot/port
3. switch(config-if)# switchport private-vlan trunk allowed vlan {vlan-list | all | none [add | except | none
| remove {vlan-list}]}
DETAILED STEPS
Command or Action
Step 1
switch# configure terminal
Step 2
switch(config)# interface type
[chassis/]slot/port
Step 3
switch(config-if)# switchport private-vlan
trunk allowed vlan {vlan-list | all | none [add
| except | none | remove {vlan-list}]}
This example shows how to add VLANs to the list of allowed VLANs on an Ethernet private VLAN trunk
port:
switch# configure terminal
switch(config)# interface ethernet 1/3
switch(config-if)# switchport private-vlan trunk allowed vlan 15-20
Cisco Nexus 5000 Series NX-OS Layer 2 Switching Configuration Guide, Release 5.0(3)N1(1)
68
Purpose
Enters configuration mode.
Selects the port to configure as a private VLAN host port. This port
can be on a Fabric Extender (identified by the chassis option).
Sets the allowed VLANs for the private trunk interface. The default is
to allow only mapped/associated VLANs on the private VLAN trunk
interface.
The primary VLANs do not need to be explicitly added to the
Note
allowed VLAN list. They are added automatically once there
is a mapping between primary and secondary VLANs.
Configuring Private VLANs