Protected Ports

CCNP Security Dec 20, 2025

Private VLAN Edge (Protected Ports) provides switch port isolation without using Private VLANs.

The switch doesn’t allow direct traffic between two protected ports.

Less configuration is required than for Private VLANs, but it supports only a single switch.

Gateway is not connected to a protected port.

int Fa0/2
  switchport mode access
  switchport access vlan 100
  switchport protected

int Fa0/3
  switchport mode access
  switchport access vlan 100
  switchport protected

Recommended for you

CCNP Security

Private VLANs

15 minutes ago • 1 min read

CCNP Security

DAI - Dynamic ARP Inspection

13 days ago • 1 min read

CCNP Security

DHCP Snooping

13 days ago • 1 min read

Protected Ports

Private VLANs

DAI - Dynamic ARP Inspection

DHCP Snooping

Protected Ports

Tags

Craig Garnham

Recommended for you

Private VLANs

DAI - Dynamic ARP Inspection

DHCP Snooping