Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
2539
Views
5
Helpful
3
Replies

DC & Perimeter Firewall

adamgibs7
Level 6
Level 6

‎08-04-2021 02:34 PM

Dears

i have a small setup and i have a below question related to design

 

i have a simple question related to the design we usually keep switches in cross connection between the internal firewall and perimeter firewall if incase of failover between the firewall the traffic should flow for this purpose, instead of buying those middle layer switches if i connect the perimeter firewall to the core switch, does it will easy for attacker to screw the core switch if incase my perimeter firewall is compromise , 

Please advise. 

Labels:
3 Replies 3

MHM Cisco World
VIP
VIP

‎08-04-2021 03:14 PM - edited ‎08-04-2021 03:18 PM

meaning using specific VLAN for router and FW?

NOTE:-this SW called outside SW 

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame

‎08-04-2021 03:41 PM

Is this design  Hosted Service model or Enterprise LAN and DC mode?  ( any topology diagram will help to understand better)

 

In General, if the enterprise DC you need to connect to Core switch for Routing in either case. ( that is the reason you have DMZ between the Internal network and the Internet.

 

 

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame

‎08-05-2021 07:59 PM

As long as you don't expose any control plane or layer 3 services on the interfaces and VLANs on the switch that your perimeter firewall connects to, the exposure to external attacks is extremely small.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card
Top