[c-nsp] privte vlan trouble? [7:114091]

Alban Dani albcisco at gmail.com
Fri Sep 29 22:12:40 EDT 2006


I have thought of that but then I am not sure how to control the traffic
between the two vlans.
One of the segments sitting behind router1 has very sensitive information.

Thank you,

Alban

On 9/29/06, Abel Aberra <aaberra at gmail.com> wrote:
>
> Did you try changing the routers interface configs for G1/14 and G2/16.
>
>
> from:           switchport mode private-vlan host
>
> to:               switchport mode private-vlan promiscuos
>
>
>
> On 9/29/06, Alban Dani <albcisco at gmail.com> wrote:
> >
> > I have the following private vlan configuration:
> >
> > What do I have to do in order for the networks sitting behind router1
> > and
> > router2
> > to talk to each other.
> >
> > I have verified that both routers have the correct routes on their
> > routing
> > table
> >
> >
> > vlan 116
> > name primary
> >   private-vlan primary
> >   private-vlan association 117-122
> >
> > vlan 119
> >   name torouter2
> >   private-vlan community
> >
> >
> > vlan 121
> > name torouter1
> >   private-vlan community
> >
> >
> > interface GigabitEthernet2/16
> > description Connection to router2
> > switchport
> > switchport private-vlan host-association 116 119
> > switchport mode private-vlan host
> > no ip address
> > speed 100
> > duplex full
> > spanning-tree portfast
> >
> >
> >
> > interface GigabitEthernet1/4
> > description Connection to router1
> > switchport
> > switchport private-vlan host-association 116 121
> > switchport mode private-vlan host
> > no ip address
> > speed nonegotiate
> > spanning-tree portfast
> >
> >
> > thank you very much,
> >
> > Alban
> >
> >
> > Message Posted at:
> > http://www.groupstudy.com/form/read.php?f=7&i=114091&t=114091
> > --------------------------------------------------
> > FAQ, list archives, and subscription info:
> > http://www.groupstudy.com/list/cisco.html
> >
> >
>


More information about the cisco-nsp mailing list