Tech moves fast! Stay ahead of the curve with Techopedia!
Join nearly 200,000 subscribers who receive actionable tech insights from Techopedia.
An access port transports traffic to and from only the specified VLAN allotted to it. Unlike a trunk port, it will not deliver exclusive identifying tags (either 802.1Q or ISL tags) because the VLAN intended for it is pre-assigned.
Usually, an access port will only have a single VLAN set up on the interface and it carries traffic for just a single VLAN. If the VLAN for an access port is not configured, the interface can carry traffic using only the default VLAN, which is usually VLAN1.
It is possible to configure Ethernet interfaces as either access ports or trunk ports, but they are unable to function as both types of port at the same time.
To enhance the functionality of access ports, the ports should be configured as host ports. Whenever the port is set up as a host port, it is instantly set as the access port and the channel grouping is automatically disabled. Only end stations can be configured as host ports. If other ports are configured as hosts, an error message is received. If the access ports receive a packet with an 802.1Q tag in its header rather than the access VLAN value, the port avoids the packet without finding out its MAC source address.
If an access VLAN (which is also a primary VLAN) is assigned to a private VLAN, then all the access ports associated with that particular access VLAN also acquire all the broadcast traffic intended for the primary VLAN in the private VLAN mode.
It is possible to modify the access port membership in a VLAN by specifying a new VLAN. It is mandatory that a VLAN be created before it is designated as an access VLAN for an access port. In case the access VLAN in an access port is modified to a VLAN that is not yet designated, the system shuts down the particular access.