If tighter security is required for passing traffic from different clients through downlink ports on the local network and over uplink ports to the service provider, port-based traffic segmentation can be used to isolate traffic for individual clients.
Traffic belonging to each client is isolated to the allocated downlink ports. But the switch can be configured to either isolate traffic passing across a client’s allocated uplink ports from the uplink ports assigned to other clients, or to forward traffic through the uplink ports used by other clients, allowing different clients to share access to their uplink ports where security is less likely to be compromised.
Command Usage
When traffic segmentation is disabled, all ports operate in normal forwarding mode based on the settings specified by other functions such as VLANs and spanning tree protocol.
A port cannot be configured in both an uplink and downlink list.
A port can only be assigned to one traffic-segmentation session.
A downlink port can only communicate with an uplink port in the same session. Therefore, if an uplink port is not configured for a session, the assigned downlink ports will not be able to communicate with any other ports.
If a downlink port is not configured for the session, the assigned uplink ports will operate as normal ports.
Command Parameters
Use the Interface > Traffic Segmentation (Configure Global) page to enable traffic segmentation.
Enables port-based traffic segmentation. (Default: Disabled)
Specifies whether or not traffic can be forwarded between uplink ports assigned to different client sessions.
Blocks traffic between uplink ports assigned to different sessions.
Forwards traffic between uplink ports assigned to different sessions.
Use the Interface > Traffic Segmentation (Configure Session) page to assign the downlink and uplink ports to use in the segmented group. Ports designated as downlink ports can not communicate with any other ports on the switch except for the uplink ports. Uplink ports can communicate with any other ports on the switch and with any designated downlink ports.
Traffic segmentation session. (Range: 1-4)
Add an interface to the segmented group by setting the direction to uplink or downlink. (Default: None)
Displays a list of ports or trunks.
Port Identifier.
Trunk Identifier.