Cisco Systems' Private VLANs: Scalable Security in a Multi-Client Environment
RFC 5517, “Cisco Systems' Private VLANs: Scalable Security in a Multi-Client Environment”, is an Informational document published in February 2010 by S. HomChaudhuri, M. Foschiano. The canonical text is published by the RFC Editor.
Abstract
This document describes a mechanism to achieve device isolation through the application of special Layer 2 forwarding constraints. Such a mechanism allows end devices to share the same IP subnet while being Layer 2 isolated, which in turn allows network designers to employ larger subnets and so reduce the address management overhead.
Some of the numerous deployment scenarios of the aforementioned mechanism (which range from data center designs to Ethernet-to-the-home-basement networks) are mentioned in the following text to exemplify the mechanism's possible usages; however, this document is not intended to cover all such deployment scenarios nor delve into their details. This document is not an Internet Standards Track specification; it is published for informational purposes.
What “Informational” means
Published for the general information of the community. It does not define an IETF standard and carries no standards-track status.
The canonical text of RFC 5517 is hosted at rfc-editor.org. Available in TXT,HTML.
- RFC 5538 The 'news' and 'nntp' URI Schemes
- RFC 5544 Syntax for Binding Documents with Time-Stamps
- RFC 5558 Virtual Enterprise Traversal
- RFC 5563 WiMAX Forum / 3GPP2 Proxy Mobile IPv4
- RFC 5564 Linguistic Guidelines for the Use of the Arabic Language in Internet Domains
- RFC 5569 IPv6 Rapid Deployment on IPv4 Infrastructures
- RFC 5572 IPv6 Tunnel Broker with the Tunnel Setup Protocol
- RFC 5457 IANA Considerations for IAX: Inter-Asterisk eXchange Version 2