Which secondary Private VLAN (PVLAN) type can communicate and send packets to an Isolated PVLAN?
A.
Community
B.
Isolated
C.
Promiscuous
D.
Primary
Explanation:
Explanation/Reference:
Which secondary Private VLAN (PVLAN) type can communicate and send packets to an Isolated PVLAN?
Which secondary Private VLAN (PVLAN) type can communicate and send packets to an Isolated PVLAN?
A.
Community
B.
Isolated
C.
Promiscuous
D.
Primary
Explanation:
Explanation/Reference:
Answer is C:
https://pubs.vmware.com/vsphere-60/index.jsp#com.vmware.vsphere.hostclient.doc/GUID-A9287D46-FDE0-4D64-9348-3905FEAC7FAE.html?resultof=%2522%2570%2572%256f%256d%2569%2573%2563%2575%256f%2575%2573%2522%2520%2522%2569%2573%256f%256c%2561%2574%2565%2564%2522%2520
Also:
http://kb.vmware.com/kb/1010691
Promiscuous – A node attached to a port in a promiscuous secondary PVLAN may send and receive packets to any node in any others secondary VLAN associated to the same primary.
More detailed explanation why C is correct.
In some situations, you might have a legitimate reason to configure a standard or a distributed virtual switch to operate in promiscuous mode, for example, if you are running network intrusion detection software or a packet sniffer.
https://pubs.vmware.com/vsphere-60/index.jsp#com.vmware.vsphere.security.doc/GUID-92F3AB1F-B4C5-4F25-A010-8820D7250350.html?resultof=%2522%2550%2572%256f%256d%2569%2573%2563%2575%256f%2575%2573%2522%2520%2522%2570%2572%256f%256d%2569%2573%2563%2575%2522%2520
Not so sure- there are only two types of secondary PVLANs.
The following below is from
https://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=1010691
“A Private VLAN is further divided into the groups:
Primary PVLAN: The original VLAN that is being divided into smaller groups is called Primary, and all the secondary PVLANs exist only inside the primary.
Secondary PVLANs : The secondary PVLANs exist only inside the primary. Each Secondary PVLAN has a specific VLAN ID associated to it, and each packet travelling through it is tagged with an ID as if it were a normal VLAN, and the physical switch associates the behavior (Isolated, Community or Promiscuous) depending on the VLAN ID found in each packet.
Note: Depending upon the type of the groups involved, hosts are not able to communicate with each other, even if they belong to the same group.
One type of Primary PVLAN:
Promiscuous – A node attached to a port in a promiscuous secondary PVLAN may send and receive packets to any node in any others secondary VLAN associated to the same primary. Routers are typically attached to promiscuous ports.
Two types of Secondary PVLANs:
Isolated: A node attached to a port in an isolated secondary PVLAN may only send to and receive packets from the promiscuous PVLAN.
Community: A node attached to a port in a community secondary PVLAN may send to and receive packets from other ports in the same secondary PVLAN, as well as send to and receive packets from the promiscuous PVLAN.”
This website explains it best – so now I agree with Answer C:
http://www.mikelaverick.com/2014/03/back-to-basics-private-vlan-4-of-n/
Yeah, a primary VLAN is a secondary promiscuous VLAN.