Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1283
Views
0
Helpful
7
Replies

Where should my default gateway be?

Go to solution
Tom101
Level 1
Level 1

‎11-22-2022 08:56 AM - edited ‎11-22-2022 09:29 AM

Hello Cisco Community,

I'm new to networking. Where should my default gateway be on this topology for VLAN 10? I would like 192.168.1.1 to be the default gateway. 

The firewall is my edge device. I'm guessing it's on the L3 switch because I don't believe you can add VLAN on the firewall for internal network devices? 

Attached is a image. 

Labels:
Preview file
167 KB
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎11-22-2022 09:08 AM

Best is add interface vlan 10 in Muliti latyer switch.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

View solution in original post

0 Helpful
7 Replies 7

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎11-22-2022 09:08 AM

Best is add interface vlan 10 in Muliti latyer switch.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
Tom101
Level 1
Level 1
In response to balaji.bandi

‎11-22-2022 09:10 AM

Thank you, with the default gateway? Correct?

0 Helpful

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame
In response to Tom101

‎11-22-2022 09:22 AM

below switches act as layer 2 then default gateway.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
Tom101
Level 1
Level 1
In response to balaji.bandi

‎11-22-2022 09:24 AM

Ok, thank you. 

0 Helpful

Go to solution
Joseph W. Doherty
Hall of Fame
Hall of Fame

‎11-22-2022 09:26 AM

"I would like 192.168.2.1 to be the default gateway."

Default gateway?  You're planning on have multiple gateways for VLAN 10?

BTW, network gateways should be within the same network as hosts are using.  What network is VLAN 10 using, as it appears it might be using 192.168.1.0/24?

"I'm guessing it's on the L3 switch because I don't believe you can add VLAN on the firewall for internal network devices?"

"it's" being the gateway?

". . . I don't believe you can add VLAN on the firewall for internal network devices?"  Possibly true - depends on the FW.  Assuming you could host the gateway on the FW, if you have internal traffic between VLANs/networks on you LAN, having the gateways on the switch would may offer more capacity/performance rather than routing such traffic on the FW, is also "unloads" the FW from needing to deal in the inter VLAN traffic.  However, if all/most traffic is to/from outside, using FW for gateway(s) probably makes little difference (beyond perhaps not needing a L3 switch).

0 Helpful

Go to solution
Tom101
Level 1
Level 1
In response to Joseph W. Doherty

‎11-22-2022 09:28 AM - edited ‎11-22-2022 09:30 AM

Opps, that is my mistake. I meant the default gateway to be 192.168.1.1. 

Yes, "it's" the gateway. 

Most of the network will be going to/from the outside. I believe the 5506 firewall can't add vlans. I could be wrong though. 

0 Helpful

Go to solution
Joseph W. Doherty
Hall of Fame
Hall of Fame
In response to Tom101

‎11-22-2022 10:07 AM

BTW, hosts, to my knowledge, don't have a "default" gateway, you define a gateway for them.

"Most of the network will be going to/from the outside."

If that's the case, from a performance standpoint, defining gateways on your L3 switch matters little (although, might be a bit easier to maintain routing on a L3 switch).

"I believe the 5506 firewall can't add vlans."

I don't know either (but reading post like:https://community.cisco.com/t5/switching/asa-5505-to-5506-x-vlans/td-p/2884526 might indicate it's possible [via some form of subinterfaces - as might be done on a Cisco router?), but if FW cannot, then yes, you'll want to define them on your L3 switch.

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card