Hi,
I knew Cisco private vlan edge /protected port is only local significant to a switch and it is layer 2. However, I don't know how I get this idea that it can go beyond one single switch in some kind of stack or cluster (3750 stackwise?). I would appreciate if someone can tell me if it is true.
Our admin office site has more than 300 employees. What I am trying to do here is to block access among user workstations while still allow data and IP phone traffic(maybe 802.11x port security also down the road). That way, if there is virus outbreak, it would not easily spread to everybody’s workstation. A layer 2 solution is definitely better than any layer 3 firewall etc from my perspective. Any suggestions would be helpful!
I knew Cisco private vlan edge /protected port is only local significant to a switch and it is layer 2. However, I don't know how I get this idea that it can go beyond one single switch in some kind of stack or cluster (3750 stackwise?). I would appreciate if someone can tell me if it is true.
Our admin office site has more than 300 employees. What I am trying to do here is to block access among user workstations while still allow data and IP phone traffic(maybe 802.11x port security also down the road). That way, if there is virus outbreak, it would not easily spread to everybody’s workstation. A layer 2 solution is definitely better than any layer 3 firewall etc from my perspective. Any suggestions would be helpful!