Restrictions
Once a tunneled node profile is applied to a port, the controller IP (primary and backup) cannot be changed.
IP address cannot be assigned to VLANs that contain ports with Port-Based Tunneling configured.
No support for fragmentation and reassembly for encapsulated frames that result in an MTU violation. Such frames will be dropped.
Packets from ports configured with Port-Based Tunnels will not be bridged with locally switched ports.
Features that are blocked when Port-Based Tunnels are configured and the scope of the block (either globally, on a port basis or on a VLAN basis):
Feature |
Blocked globally/per port/ VLAN with Port-Based Tunneling |
|---|---|
IP multicast routing |
Global |
Openflow |
Global |
Q-in-Q |
Global |
Distributed Trunking |
Global |
Mesh |
Global |
VXLAN |
Global |
IP address: manual and dhcp |
VLAN |
802.1x, mac auth, webauth, LMA, port security |
Port |
DIPLD (IPv4/IPv6) |
Port |
DSNOOP (IPv4/IPv6) |
VLAN |
ARP protect |
VLAN |
RA guard |
Port |
Virus throttling |
Port |
BYOD |
VLAN |
Trunk |
Profile cannot be applied to a trunk |
PBR policies |
VLAN |
VSF on a Port-Based Tunnel configured port |
Port |
Source port/Multicast filters |
Port |
DHCP client/Server/Relay |
VLAN |