Netgear M5300-28G-POE+ (GSM7228PSv1h2) - 12-Port Managed Gigabit Switch Ratgeber Für Administratoren
Chapter 15. Security Management
|
265
ProSafe Managed Switch
In following example, PC 1 and PC 2 can access the Internet as usual, but PC 1 cannot see
the traffic that is generated by PC 2, that is, no traffic is forwarded between PC 1 and PC 2.
the traffic that is generated by PC 2, that is, no traffic is forwarded between PC 1 and PC 2.
Figure 28. Protected ports
CLI: Configure a Protected Port to Isolate Ports on the Switch
1.
Create one VLAN 192 including PC 1 and PC 2.
(Netgear Switch) #vlan database
(Netgear Switch) #vlan 192
(Netgear Switch) #vlan routing 192
(Netgear Switch) #exit
(Netgear Switch) #configure
(Netgear Switch) (Config)#interface 1/0/23
(Netgear Switch) (Interface 1/0/23)#vlan pvid 192
(Netgear Switch) (Interface 1/0/23)#vlan participation include 192
(Netgear Switch) (Interface 1/0/23)#exit
(Netgear Switch) (Config)#interface 1/0/24
(Netgear Switch) (Interface 1/0/24)#vlan pvid 192
(Netgear Switch) (Interface 1/0/24)#vlan participation include 192
(Netgear Switch) (Interface 1/0/24)#exit
(Netgear Switch) (Interface-vlan 192)#interface vlan 192
(Netgear Switch) (Interface-vlan 192)#routing
(Netgear Switch) (Interface-vlan 192)#ip address 192.168.1.254 255.255.255.0
(Netgear Switch) (Interface-vlan 192)#exit
Internet
PC 1
PC 2
Layer 2 switch
10.100.5.34
192.168.1.
192.168.1.
192.168.1.252
192.168.1.252