Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
550
Views
0
Helpful
4
Replies

firewall between directly connected networks

algorithm334411221
Level 1
Level 1

‎09-26-2015 04:18 PM - edited ‎03-05-2019 02:23 AM

hi everyone,

i have a switch (2960) which is configured with several virtual interfaces. i need to add routing ability to this switch. however when i enable routing, the switch sees all the interfaces i created as being directly connected. but i also need to have the traffic inspected as it enters any of the interfaces. i have an asa and i would like the switch to forward all the traffic to this asa where it gets inspected. is it possible to do this?

thanks

Labels:
0 Helpful
4 Replies 4

Richard Burts
Hall of Fame
Hall of Fame

‎09-26-2015 06:00 PM

If you were to do the routing between subnets on your ASA and leave the switch as layer 2 then the ASA could inspect all the traffic. If you enable routing on the 2960 then I am not aware of a way to send all traffic to the ASA to be inspected.

 

HTH

 

Rick

HTH

Rick
0 Helpful

algorithm334411221
Level 1
Level 1
In response to Richard Burts

‎09-27-2015 08:25 AM

thank you Richard.

0 Helpful

trfinkenstadt
Level 1
Level 1

‎09-28-2015 06:16 AM

Hello,

 

Can you put the default gateway for your vlans onto the ASA, remove the SVIs on the 2960, and route through the ASA?

 

 

0 Helpful

algorithm334411221
Level 1
Level 1
In response to trfinkenstadt

‎09-28-2015 01:12 PM

i will give it a try. thanks.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card