New Training: Private VLANS

In this 8-video skill, CBT Nuggets trainer Keith Barker explains, configures, and verifies Private VLANs (PVLANs) for controlling network traffic. Watch this new Cisco training.

Watch the full course: Implementing and Operating Cisco Security Core Technologies

This training includes:

• 8 videos
• 38 minutes of training

You’ll learn these topics in this skill:

• Introduction to Private VLANs
• PVLANs Overview
• Promiscuous Ports
• PVLAN Design
• Implement PVLANs
• Verify PVLANs
• Trunking and PVLANs
• PVLAN Summary

What is a Private VLAN?

A private VLAN is the means of partitioning the Layer 2 broadcast domain of a single VLAN into multiple subdomains. This allows you to make the ports on the switch private by isolating them. In a private VLAN domain, there is a single primary VLAN that all secondary VLANs share, which are differentiated by secondary VLAN IDs.

Secondary VLANs can isolate ports within a private VLAN domain in two different ways. A secondary VLAN can either be an isolated VLAN, which means that their ports cannot directly communicate with one another at the Layer 2 level, or a community VLAN, which means that their ports can communicate with each other but cannot communicate with ports in another community VLAN or those in an isolated VLAN.

A private VLAN port can also be promiscuous, which means that it belongs to the primary VLAN and can communicate with all community and isolated ports on the secondary VLANs.