How can I disable a trunk interface on a CE switch from receiving packets from a VLAN

0

You can run the undo port trunk allow-pass vlan { { vlan-id1 [ to vlan-id2 ] } &<1-40> | all } command in the interface view to delete trunk interfaces from a VLAN. In this way, packets from the VLAN will be denied passage through trunk interfaces.
# Configure 10GE1/0/1 to reject packets from VLAN 1.
system-view
[~HUAWEI] interface 10ge 1/0/1
[~HUAWEI-10GE1/0/1] port link-type trunk
[*HUAWEI-10GE1/0/1] undo port trunk allow-pass vlan 1
[*HUAWEI-10GE1/0/1] commit

Other related questions:
How to configure an Eth-Trunk to transparently transmit packets from a VLAN on CE switches
Run the port link-type { access | hybrid | trunk } command in the Eth-Trunk interface view to configure the link type of the interface and add the interface to a VLAN. The Eth-Trunk can then transparently transmit packets from the VLAN. # Configure Eth-Trunk 2 as a trunk interface and configure it to transparently transmit packets from VLAN 2. system-view [~HUAWEI] vlan batch 2 //Create VLAN 2. [*HUAWEI] interface eth-trunk 2 //Create an Eth-Trunk. [*HUAWEI-Eth-Trunk2] trunkport 10ge 1/0/1 [*HUAWEI-Eth-Trunk2] port link-type trunk [*HUAWEI-Eth-Trunk2] port trunk allow-pass vlan 2 //Add Eth-Trunk 2 to VLAN 2. [*HUAWEI-Eth-Trunk2] commit

Prohibiting specified interfaces from receiving NTP packets
Prohibit a specified interface from receiving NTP packets as follows: 1. Run the system-view command to access the system view. 2. Run the interface interface-type interface-number command to enter the interface view. 3. Run the following commands: The ntp-service in-interface disable command prohibits the firewall interface from receiving NTP IPv4 packets. The ntp-service ipv6 in-interface disable command prohibits the firewall interface from receiving NTP IPv6 packets.

How to configure an interface to allow packets from multiple VLANs
Ethernet interfaces fall into the following types: 1. Access interface: An access interface often connects to a user terminal such as a user host or server that cannot identify VLAN tags, or is used when VLANs do not need to be differentiated. Access interfaces can add only a unique VLAN tag to untagged frames. 2. Trunk interface: A trunk interface often connects to a switch, router, AP, or voice terminal that can receive and send tagged and untagged frames simultaneously. It allows frames from multiple VLANs. 3.Hybrid interface: A hybrid interface can connect to not only a user terminal (such as a user host or server) or network device (such as a hub) that cannot identify tags, but also a switch, router, AP, or voice terminal that can receive and send tagged and untagged frames. It allows tagged frames from multiple VLANs. It allows frames from multiple VLANs.

If you have more questions, you can seek help from following ways:
To iKnow To Live Chat
Scroll to top