PVLAN Interaction with other features

Features you configure on the primary VLAN only

The following features are not permitted to be configured on secondary VLANs. The configuration of this feature on the primary VLAN is automatically applied to the secondary VLANs.

  • Local-proxy ARP

  • Proxy ARP

  • DHCP snooping

  • DHCPv6 Snooping

  • UDP forwarder

  • RA Guard

  • ND Snooping

  • DARPP

  • DIPLD v4/v6

  • IGMP Snooping

  • MLD Snooping

  • IPv4/v6 Address

  • ND

  • IP Directed Broadcast, DHCP Relay, UDP-broadcast-fwd

  • Disable-Layer3

  • Jumbo-MTU

  • DHCP Server

  • IP-Recv-MAC

  • VRRP

  • IRDP

  • BGP

  • OSPF

  • OSPF3

  • RIP

  • MSTP vlan-instance map

  • Smartlink

  • Neighbor Discovery configurations

  • Static routes

  • Source routes

  • Source interface

  • Source VLAN for traceroute

  • DT peer interface

  • Ping (source VLAN configuration)

  • Voice VLAN

Features to configure the same on all VLANs in a PVLAN

For the following features, Hewlett Packard Enterprise recommends that you apply the same configuration to the primary and all secondary VLANs. If you do not apply the same configuration to all the VLANs in the PVLAN domain, the feature might function in partial or suboptimal ways.

For example, locking down a MAC address (using the Static-MAC feature) on a port and a specific VLAN only restricts the MAC address on that VLAN. The client device with that MAC address can access other VLANs on the same port or through other ports. If you create a PVLAN by partitioning a VLAN that uses the Static-MAC feature, Hewlett Packard Enterprise recommends that you apply the same Static-MAC configurations to the secondary VLANs.

  • DST-IP, L4-7 ACL

  • DST-IP, L4-7 Policy Based Mirror

  • QoS

  • Static-MAC

Features not permitted on PVLANs

The following features are not permitted to be configured on PVLANs:

  • Primary-vlan (PVLANs cannot be configured as the primary regular VLAN.)

  • Management-vlan

  • Protocol-vlan

  • Level 3 mulitcast protocols and routing

  • PVST

  • RPVST

  • LLDP radio ports

  • Out Mirroring

  • Distributed trunking, including Dynamic LACP trunk ports

  • GVRP

  • MVRP

  • PIM

  • QinQ

  • VLAN source filtering

  • BYOD onboarding VLAN

  • OpenFlow

  • Isolate-list

  • Forbidden ports

  • Untrusted port configuration on a primary VLAN port