This is L2 separation directly between the Apple and Microsoft servers that are hosted at this specific service provider. If L2 isn't allowing traffic directly between these servers, no type of L3/4 direct communication between them is going to happen either. An external router, outside of the private VLAN infrastructure could be used to communicate between the servers.
Thank you very much Keith6783... Your presentation skill is the best of all instructors i have listened to and i am hooked cos i am still waiting to take my ccna certs exam
In long terms I guess creating individual vlan interfaces and subnetting ip allocations for clients is better approach. Yes you loose one IP for vlan interface and two more for subnet to work, but good news, IPv6 is right here waiting to be used :)) And lets not forget about ip subnet-zero, I think thats also an option :D
And how is IP address distribution managed? I assume this will have to be done from router since if ISP chooses such strategy, obviously those Private VLAN-s will be done on L2 Switches. This also means, that qos policing method of bandwidth management will require a much more work to be done as matching it to class-default and applying on primary vlan interface will effectively limit all the customers with the same policy :)
Hi Keith, great admiration for your knowledge and ability to transfer it to others.
In this video I don't agree with your statement @ 3:40 : "We're also going to create an additional VLAN called the Primary VLAN". I think this is misleading as this Primary VLAN (where the router is) is the same primary VLAN that VLANs 20,30 and 40 belong to. In the diagram, the blue circle should encompass all others (microsoft, cisco and apple inside the blue circle)
@rruckley you cant compare PVLANs and VACLs, they're used for different purposes; however, VACLs can do what PVLANs do although it requires more work; but PVLANs can't do what VACLs do.
@elpaisitadeoro True I guess. Private VLANs are strictly a layer 2 solution whilst a VACL can filter based on IP and thus would need to know what the addressing was.
Good stuff mate, thanks alot
thrillcode 1 week ago
WOW... LIKE A BOSS. Great vid
jac01055 2 weeks ago
i don't have even the smallest idea how i got here but.... me gusta
wav5000kb 3 weeks ago
I cant use these commands on any switch on packet tracer. Damn.
2007Russdog 1 month ago
mind = blown
dyhs2006 2 months ago
impressive thanx!!!
stringerrbell77 3 months ago
Nothing but excellence in explaining the concepts; it's lucid and clear.
2010superfunny 3 months ago
MR keith videos about VLAN there is just one video of you about VLAN which i found i wana to know is there more Videos of u r in VLAN tnx
asadullah991 5 months ago
mr keith where r other videos
asadullah991 5 months ago
@asadullah991
There are many videos on my channel Keith6783 here on youtube. Did you have a specific video you are looking for?
Keith
Keith6783 5 months ago
@Keith6783 Do you have any videos on Isolated Pvt vlan trunk and Promiscuous trunk ports?
bhinikhanna 1 month ago
thanks for the video, awesome and good explanation.
hardeez1 5 months ago
how does it work with NAT? for example port 80 on apple comm and 3389 on microsoft? because my gateway is 192.168.1.254/24 so how can i port forward?
basmagic 6 months ago
@basmagic
This is L2 separation directly between the Apple and Microsoft servers that are hosted at this specific service provider. If L2 isn't allowing traffic directly between these servers, no type of L3/4 direct communication between them is going to happen either. An external router, outside of the private VLAN infrastructure could be used to communicate between the servers.
Keith6783 6 months ago
Thank you very much Keith6783... Your presentation skill is the best of all instructors i have listened to and i am hooked cos i am still waiting to take my ccna certs exam
MegaDonaldification 7 months ago
Great Job Explaining these concepts!
chengteh 8 months ago
@Keith6783 Great video 5 starts
micheal74rich 8 months ago
@micheal74rich
Thanks! I appreciate the kind words.
Keith6783 8 months ago
@supersonicrobin3000-
thank you for the kind words. I appreciate it.
Keith
Keith6783 9 months ago
very Nicely done, superb way of explaining, i appreciate it!! thnks a lot!!
supersonicrobin3000 9 months ago
@1976Mrmarcelo-
You are welcome. Thanks for the comment!
Keith
Keith6783 10 months ago
great video, thanx
1976Mrmarcelo 10 months ago
VLAN is an acronym that stands for Virtual Local Area Network. It is a L2 broadcast domain, and usually is associated with a single IP subnet.
If you go to my channel Keith6783, I have some other videos that explain VLANs in more detail.
Best wishes,
Keith
Keith6783 11 months ago
what's 'vlan'?
BadluckittyGR 11 months ago
Glad you enjoyed it. Thanks for the positive feedback.
Keith
Keith6783 11 months ago
absolutely great video! I was looking for a video explaining PVLAN.
This is great!!!
Thank you!
giulianogibi 11 months ago
rakesh007siva-
Thanks for your comments. I am glad it was of use for you.
Keith6783 1 year ago
Thank you very much.Now i have good idea about the private VLAN.
i learn alot in this vedio
rakesh007siva 1 year ago
Hello ganmanG-
I did the demonstration on a Cisco Catalyst 3560 switch.
Best wishes!
Keith6783 1 year ago
CAN YOU PLEASE TELL ME WHAT CISCO SWITCH YOU USED TO DEMONSTRATE THIS????
THANK YOU SOO MUCH!!! I LEARNT ALOT IN THIS VIDEO!
ganmanG 1 year ago
In long terms I guess creating individual vlan interfaces and subnetting ip allocations for clients is better approach. Yes you loose one IP for vlan interface and two more for subnet to work, but good news, IPv6 is right here waiting to be used :)) And lets not forget about ip subnet-zero, I think thats also an option :D
XSFlanger 1 year ago
And how is IP address distribution managed? I assume this will have to be done from router since if ISP chooses such strategy, obviously those Private VLAN-s will be done on L2 Switches. This also means, that qos policing method of bandwidth management will require a much more work to be done as matching it to class-default and applying on primary vlan interface will effectively limit all the customers with the same policy :)
XSFlanger 1 year ago
Hi Keith, great admiration for your knowledge and ability to transfer it to others.
In this video I don't agree with your statement @ 3:40 : "We're also going to create an additional VLAN called the Primary VLAN". I think this is misleading as this Primary VLAN (where the router is) is the same primary VLAN that VLANs 20,30 and 40 belong to. In the diagram, the blue circle should encompass all others (microsoft, cisco and apple inside the blue circle)
elpaisitadeoro 1 year ago
Is this supposed to be more scalable than VACL?
rruckley 1 year ago
@rruckley you cant compare PVLANs and VACLs, they're used for different purposes; however, VACLs can do what PVLANs do although it requires more work; but PVLANs can't do what VACLs do.
elpaisitadeoro 1 year ago
@elpaisitadeoro True I guess. Private VLANs are strictly a layer 2 solution whilst a VACL can filter based on IP and thus would need to know what the addressing was.
rruckley 1 year ago
Keith...you have a awsome toturial....easy to understand and digest ccnp stuffz...keep it coming!
tenzinpalden 1 year ago
Hey Mr. Keith,
How r u? and ur daughter who got married?
I am too much fan of u. your voice impressed me too much, though I am male.
Thanks for ur new video .
palashmitra000 1 year ago
Thanks for this video on private vlans....very explanatory...
oluseye002 1 year ago