New Training: Private VLANS

In this 8-video skill, CBT Nuggets trainer Keith Barker explains, configures, and verifies Private VLANs (PVLANs) for controlling network traffic. Watch this new Cisco training.

Watch the full course: Implementing and Operating Cisco Security Core Technologies

This training includes:

• 8 videos

• 38 minutes of training

You’ll learn these topics in this skill:

• Introduction to Private VLANs

• PVLANs Overview

• Promiscuous Ports

• PVLAN Design

• Implement PVLANs

• Verify PVLANs

• Trunking and PVLANs

• PVLAN Summary

What is a Private VLAN?

A private VLAN is the means of partitioning the Layer 2 broadcast domain of a single VLAN into multiple subdomains. This allows you to make the ports on the switch private by isolating them. In a private VLAN domain, there is a single primary VLAN that all secondary VLANs share, which are differentiated by secondary VLAN IDs.

Secondary VLANs can isolate ports within a private VLAN domain in two different ways. A secondary VLAN can either be an isolated VLAN, which means that their ports cannot directly communicate with one another at the Layer 2 level, or a community VLAN, which means that their ports can communicate with each other but cannot communicate with ports in another community VLAN or those in an isolated VLAN.

A private VLAN port can also be promiscuous, which means that it belongs to the primary VLAN and can communicate with all community and isolated ports on the secondary VLANs.