Information Technology Reference
In-Depth Information
communicate with each other, but using a VLAN for each host quickly becomes unwieldy for
a number of reasons. By using PVLANs, you can isolate hosts from each other while keeping
them on the same IP subnet. Figure 5.67 provides a graphical overview of how PVLANs work.
PVLANs are coni gured in pairs: the primary VLAN and any secondary VLANs. The pri-
mary VLAN is considered the downstream VLAN; that is, trafi c to the host travels along the
primary VLAN. The secondary VLAN is considered the upstream VLAN; that is, trafi c from the
host travels along the secondary VLAN.
To use PVLANs, i rst coni gure the PVLANs on the physical switches connecting to the ESXi
hosts, and then add the PVLAN entries to the distributed switch in vCenter Server.
Perform the following steps to dei ne PVLAN entries on a distributed switch:
1. Launch the vSphere Web Client by connecting to a vCenter Server instance.
2. On the vSphere Web Client home screen, select vCenter, then select Distributed Switches
from the inventory lists on the left.
3. Select an existing distributed switch in the inventory pane on the left, select the Manage
tab in the details pane on the right, and select Settings.
4. Select Private VLAN, then click the Edit button.
Figure 5.67
Private VLANs can
help isolate ports
on the same IP
subnet.
PVLAN 101
PVLAN 101
PVLAN
101
5. In the Edit Private VLAN Settings dialog box, click Add to add a primary VLAN ID to
the list on the left.
6. For each primary VLAN ID in the list on the left, add one or more secondary VLANs to
the list on the right, as shown in Figure 5.68.
 
 
 
Search WWH ::




Custom Search