Chapter 2
Cisco ME 3400 Ethernet Access Switch Cisco IOS Commands
private-vlan
Use the private-vlan VLAN configuration command to configure private VLANs and to configure the
association between private-VLAN primary and secondary VLANs. Use the no form of this command
to return the VLAN to normal VLAN configuration.
Syntax Description
association
secondary-vlan-list
add
remove
community
isolated
primary
Defaults
The default is to no configured private VLANs.
Command Modes
VLAN configuration
Command History
Release
12.2(25)EX
Usage Guidelines
You must manually configure private VLANs on all switches in the Layer 2 network to merge their Layer
2 databases and to prevent flooding of private-VLAN traffic.
You cannot include VLAN 1 or VLANs 1002 to 1005 in the private-VLAN configuration. Extended
VLANs (VLAN IDs 1006 to 4094) can be configured as private VLANs.
You can associate a secondary (isolated or community) VLAN with only one primary VLAN. A primary
VLAN can have one isolated VLAN and multiple community VLANs associated with it.
•
•
•
OL-9640-10
private-vlan {association [add | remove] secondary-vlan-list | community | isolated | primary}
no private-vlan {association | community | isolated | primary}
Create an association between the primary VLAN and a secondary VLAN.
Specify one or more secondary VLANs to be associated with a primary
VLAN in a private VLAN.
Associate a secondary VLAN to a primary VLAN.
Clear the association between a secondary VLAN and a primary VLAN.
Designate the VLAN as a community VLAN.
Designate the VLAN as a community VLAN.
Designate the VLAN as a community VLAN.
Modification
This command was introduced.
A secondary VLAN cannot be configured as a primary VLAN.
The secondary_vlan_list parameter cannot contain spaces. It can contain multiple comma-separated
items. Each item can be a single private-VLAN ID or a hyphenated range of private-VLAN IDs. The
list can contain one isolated VLAN and multiple community VLANs.
If you delete either the primary or secondary VLANs, the ports associated with the VLAN become
inactive.
Cisco ME 3400 Ethernet Access Switch Command Reference
private-vlan
2-339