|
geertss
2 posts
 |
Hi I want to know if a cisco c3750(x) supports the possibility to have different vlans mapped to one vlan? THe problem is the following: we have home gateways which we need to test for different customers and we attach those to the cisco via their WAN port. For different customers it can be that we need to use different vlans. But in the backbone it should go to one server which is in another vlan. For example the device uses vlans 1000 and 1001 (trunk on an interface), another device can use vlan 2000 and 2001. But the server is using vlan 100 and both should get a dhcp address from that server. Is this possible to do via private vlanning? if yes how can I do this. I know for other equipments like an isam we can specify a user vlan (for vdsl or vp/vc for a adsl line) and we map that to a different vlan inside of the backbone). Or maybe I have to configure my services differently? Anybody some suggestions. |
|
foconnor
1 post
|
You can use PVLANs to utilize primary vlans and map sub/stub or secondary vlans to that primary. This provides security between the isolated host residing on these secondary vlan ports. Keep in mind that all host that reside on the isolated/secondary vlans must communicate via the routed/virtual routed interface...even for communication that reside on the same vlan/sw. This configuration can span multiple switches as well via trunk ports. Depending on your setup you have a few options for port configurations. Promiscous, isolated and community. Community ports comm. between each other. Isolated ports only can ccomm. w/ promiscuous ports and Promiscous ports can comm with any type within their primary vlan domain. Hopefully this helps with your questions. We do this for host on our network for security reasons. We use the acl at the router to restrict communications to any other resources on the network, regardless of vlan or subnet. |
Viewing 1 - 2 of 2
- 1