Anyone using the Cisco Edge (Protected) PVLAN port feature?

By doublea1535 ·
Anyone using the Cisco Edge (Protected) PVLAN port feature?

I am considering deploying a managed backup network using the protected or edge port feature of PVLAN using Cisco switches. This is the very minimal PVLAN implementation, and doesn't even really qualify as true PVLAN setup. I am wondering if anyone has used this before and what their experiences are. Basically I have multiple access switches and one core switch. Customer servers live on the multiple access switches, and the backup server lives on the core switch. The access switches all connect to the core switch. My idea is to put all customer-server-facing ports into protected mode, and the ports on the core switch facing the access switches into protected mode. I have tested this implementation and it seems to work based solely on ICMP PINGs. I was only able to access the backup server from any given backup client, and from the backup server could access any and every backup client. Every customer server would live in the same VLAN, and the ports from the access switches to the core switch would be access ports. Management connectivity to each switch would be in a separate VLAN.

Is anyone out there using a setup like this?
What are you experiences with it? The big plus is that it is super easy to setup.
If you are/have running it, did you experience any security breaches?

This conversation is currently closed to new comments.

Thread display: Collapse - | Expand +

All Answers

Share your knowledge

Related Discussions

Related Forums