I guesd what you are getting at is we can use the same isolated private vlan for all 100. I guess that is what my original question should have been. Can we use the same isolated private vlan for each user? If so then how do the switches know which port is which?
Edit - Okay I did some more digging and found a few Cisco docs on Private Vlans and an INE blog by Petr Lapukhov. The OCG doesn't do a very good job explaining this IMO. Yes we can use the same isolate private van for all isolated customers/users. Ports configured as isolated only talk with ports configured as promiscuous and no other ports. This allows us to use the same private vlan for all isolated ports. The promiscuous ports on the other hand can talk to all ports associated with same primary vlan assigned to that port. Petr did a good job explaining it for me and it made a lot more sense. You can find his blog at the link below.
Comments
How many would you need if you used private-vlans?
IPSec VPN Design 44%
Mastering VMWare vSphere 5 42.8%
IPSec VPN Design 44%
Mastering VMWare vSphere 5 42.8%
Edit - Okay I did some more digging and found a few Cisco docs on Private Vlans and an INE blog by Petr Lapukhov. The OCG doesn't do a very good job explaining this IMO. Yes we can use the same isolate private van for all isolated customers/users. Ports configured as isolated only talk with ports configured as promiscuous and no other ports. This allows us to use the same private vlan for all isolated ports. The promiscuous ports on the other hand can talk to all ports associated with same primary vlan assigned to that port. Petr did a good job explaining it for me and it made a lot more sense. You can find his blog at the link below.
http://blog.ine.com/2008/01/31/understanding-private-vlans/