CartA customer stated they were getting results they didn’t expect while configuring Private Vlan’s during practice labs. To help show how private-vlan’s should be configured and the results you should expect I have put this post up here.
First the feature.
Private VLANs provide the functionality to restrict communication among members of a particular VLAN. The purpose of this is to protect devices in the event of a security breach. By limiting the communication on a VLAN, if a security breach occurs, a device that is compromised will be unable to communicate directly with other devices. (If in an isolated VLAN, or a limited number of devices if in a Community VLAN). Thus you have provided a second line of defense on the network. Its purpose is to help mitigate security threats.
Tags: CCIE, Private VLAN, Routing & Switching, Tech Note