Switches, Hubs, and Modems
1747988 Members
4884 Online
108756 Solutions
New Discussion юеВ

Re: Layer 2 Port Isolation

 
SOLVED
Go to solution
Tom Spappola
New Member

Layer 2 Port Isolation

Hi all !

I would like to know if I can get Layer 2 port isolation on procurve switches.
I would like to have

ports 1-10 to talk to port 11 with full layer 2
but not seeing each others.

Is this possibile ?


Is available an example for

2510
26xx series
28xx series

What procurve switch can do this ?

Regads
Tom


3 REPLIES 3
Ian Vaughan
Honored Contributor
Solution

Re: Layer 2 Port Isolation

Hi Tom,
take a look at the "filter by source-port"
http://ftp.hp.com/pub/networking/software/Security-Oct2005-59906024-Chap10-Traf-Security-Filts.pdf

This functionality on the 2600's allows you to drop inbound traffic at a source port if it is destined for another port that matches the filter definition.

E.g. in your case port 1 would drop 2-10 and anything beyond 11. Port 2 drops 1,3-10,12-24 etc.
# filter source-port 1 drop 2-10,12-24
# filter source-port 2 drop 1,3-10,12-24
etc

I would test it out and see if it works for you. It's kind of port based zoning for LAN switches.

HTH
Ian
Hope that helps - please click "Thumbs up" for Kudos if it does
## ---------------------------------------------------------------------------##
Which is the only cheese that is made backwards?
Edam!
Tweets: @2techie4me
Tom Spappola
New Member

Re: Layer 2 Port Isolation

Thank you very much !

I`ll give filter a try !

Thanks
Tom
Hattim_Khaleel
Visitor

Re: Layer 2 Port Isolation

Hi, 

I have 2910 procurve switch , All ports from 1-20 is on Users VLAN and port 23 is the trunk to other switches. 
I need to isolate the communincation between ports 1-20 and i used the command

filter source-port 1 drop 2-20
filter source-port 2 drop 1,3-20
filter source-port 3 drop 1-2,4-20
..... etc till port 20

but the issues is happend in the voice VLAN. telephone stoped to comminicate with each other to.

Any idea or trick to solve this issue ?