The extension of VLAN standard, able to isolate traffic between VMs within same VLAN
DMZ is a use case PVLAN
PVLAN contains primary VLAN (Promiscuous) and secondary VLAN (identified by unique VLAN ID), while secondary VLAN (Isolated/Community)exist only within primary VLAN
Both physical switch (PVLAN-aware, due to MAC address discovery) and vDS could identify the VLAN ID for PVLAN
Physical switch also use tagging for the traffic; physical switch must trunk to ESX(i) hosts and not in secondary VLAN
No comments:
Post a Comment