Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
379
Views
0
Helpful
1
Replies

Shared Services Block Design

techno.it
Level 1
Level 1

‎08-21-2023 04:02 PM

Hello Team,

When it comes to shared services blocks like WLC, ISE, DNAC, and DHCP, do you typically deploy them behind the data center firewall in the data center block for an extra layer of security, or do you prefer to place them on the core side of the network for ease of access and scalability, for instance, pair of stack switches directly connected to the Core switch?

Regarding the WLC, let's consider a scenario where it's set up in Flex Connect mode for all SSID traffic, including the guest network. However, please note that the guest network is isolated within an L2 VLAN on the Core Switch, with the firewall serving as the gateway.

Appreciate any tips and suggestions.

0 Helpful
1 Reply 1

Flavio Miranda
VIP
VIP

‎08-21-2023 05:56 PM

@techno.it 

This Is so specific. I believe each company will have some different approach. 

 And it will depend on the size.  Some data center may have dozen of firewalls.

 Some companies put firewall between data center and Corp sites but some will not filter this traffic. Usually Banks put firewall everywhere.

 

 

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card