Re: [OSL | CCIE_RS] Private-vlans and switchport protected command

Mon, 14 Jan 2013 13:18:49 -0800 

Hi Saleh,

Thanks for bringing this to my attention.
I thought that two switchport protected ports can communicate because cisco documentation says ¨The switchport protection feature is local to the switch; communication between protected ports on the same switch is possible only through a Layer 3 device.¨ 

I will try with OSPF and P2MP network type.



Regards,
Lukasz

On 2013-01-12 22:33, Saleh Batouq wrote:

If R2 and R6 are on the same switch you can use Switchport protected.
They can communicate via R1 if you use OSPF network type P2MP. This
way you are creating a Hub-n-Spoke topology where R1 is the hub.
 But I assume the lab is asking for PVLANs. 
So PUT R2 & R6 IN A COMMUNITY
 R7 AND R8 IN ANOTHER COMMUNITY.
 R1 PROMISC
!
All the best,

 On Sat, Jan 12, 2013 at 7:01 PM, Lukasz <[email protected] [4]>
wrote:


Hi All,

I am using proctorlabs to run some tests on private vlans and on
switchport protected command.

My scenario is as follows:

R1 Fa0/1 --- Fa0/1 Cat2  fa0/2 --- Gi0/1 R2
                         Fa0/6 --- Fa0/0 R6
                         Fa0/7 --- Fa0/0 R7
                         Fa0/8 --  Fa0/0 R8

Router interfaces are in 10.1.2.x/24 network where x is routers
number.

Tasks:
- Routers (R2,R6,R7,R8) should be in the same VLAN.
- R2 and R6 should talk to each other but they should not be able
to talk to R7 and R8.
- R7 and R8 should be able to talk to each other and also to other
devices in the same vlan (when they will be added in the future).

First without any settings on Cat2 I have run ping from R1 to other
routers and it was successfull.

My suggested solution. Put switchport protected on fa0/2 and fa0/6
so they should be able to talk to each other via Layer 3 device
(R1).
                        Put R7 and R8 in community
private-vlan so they can talk to each other but not to R2 and R6.

Is that logic correct?

Thanks for all comments.

Regards,
Lukasz

_______________________________________________
For more information regarding industry leading CCIE Lab training,
please visit www.ipexpert.com [1]

Are you a CCNP or CCIE and looking for a job? Check out
www.PlatinumPlacement.com [2]

http://onlinestudylist.com/mailman/listinfo/ccie_rs [3]




Links:
------
[1] http://www.ipexpert.com
[2] http://www.PlatinumPlacement.com
[3] http://onlinestudylist.com/mailman/listinfo/ccie_rs
[4] mailto:[email protected]

_______________________________________________
For more information regarding industry leading CCIE Lab training, please visit 
www.ipexpert.com

Are you a CCNP or CCIE and looking for a job? Check out 
www.PlatinumPlacement.com

http://onlinestudylist.com/mailman/listinfo/ccie_rs

Reply via email to