cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

180
Views
0
Helpful
1
Replies
Scott Pickles
Enthusiast

Firewall Design Guide - Outside Switches

In the Firewall and IPS design guide, there are switches on the outside of the firewall, before the internet edge routers.  What is the purpose of these switches on the outside?  What benefit does one gain by having them in place?  The guide can be found here.

1 ACCEPTED SOLUTION

Accepted Solutions
Jon Marshall
Hall of Fame Guru

Scott

I don't know whether there is a specific diagram you were referring to but as a general answer.

If your firewalls are running as a pair then they need their outside interfaces in the same IP subnet.

You could not connect them directly to the routers because then each interface would have to use a different IP subnet.

So you use switches and place the outside interfaces of the firewalls and the inside interfaces of the routers into the same vlan/IP subnet.

Jon

View solution in original post

1 REPLY 1
Jon Marshall
Hall of Fame Guru

Scott

I don't know whether there is a specific diagram you were referring to but as a general answer.

If your firewalls are running as a pair then they need their outside interfaces in the same IP subnet.

You could not connect them directly to the routers because then each interface would have to use a different IP subnet.

So you use switches and place the outside interfaces of the firewalls and the inside interfaces of the routers into the same vlan/IP subnet.

Jon

View solution in original post

Content for Community-Ad