Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2333
Views
1
Helpful
21
Replies

SG350XG 'local routing' when DHCP Server/NAT/SVI's on FPR1010

Go to solution
TheGoob
VIP
VIP

‎03-17-2025 06:43 PM

Hi

I was curious; My FPR1010 is 1G Interfaces. My SG350XG is 10G Interfaces. My hosts in the Server room are 10G Interfaces [as well as other stuff] .... The NAT/ACL/SVI and everything comes from the FPR and is Trunked to the SG350XG and that is L2 Mode.... When my 10G devices communicate [across the multiple vlans on the SG/FPR and all running through the SG] will it downgrade to 1G or will the routing stay "local" at 10G?

If it will downgrade to 1G, what are my alternatives? ASIDE from moving the SVI/DHCP to the SG from the FPR... Is there a way to keep it local?

If I can not communicate 10G across the SG and it's vlans because routing is done on the FPR.... Is my solution to move everything on the SG and just make static routes on the FPR in order to tell it where to find these vlans?

0 Helpful
21 Replies 21

Go to solution
liviu.gheorghe
VIP
VIP
In response to balaji.bandi

‎03-19-2025 02:13 AM

Have to ask - what is the Internet bandwidth available? Because if it's not greater than 1Gbps, configuring a port-channel between the switch and the FPR will help you only in terms of link/port redundancy. In my opinion, who can benefit from 10G communications are the host connected to the switch.

Regards, LG
*** Please Rate All Helpful Responses ***
0 Helpful

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame
In response to liviu.gheorghe

‎03-19-2025 02:20 AM

i think OP was Looking LAN device to have 10GB.

BB

=====Preenayamo Vasudevam=====

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
liviu.gheorghe
VIP
VIP
In response to balaji.bandi

‎03-19-2025 02:43 AM

I think the OP has a SG350XG lan switch which gives him a number of minimum 10 10G ports.

Regards, LG
*** Please Rate All Helpful Responses ***
0 Helpful

Go to solution
TheGoob
VIP
VIP
In response to liviu.gheorghe

‎03-19-2025 08:11 AM

Hello

Yes everything LAN [Switch, Hosts] are 10G capable. My Internet is 40M nowhere near that, so the 10G is simply for LAN usage transferring across network, streaming 4k movies from server etc. I just decided to source the vlans etc on the Switch so routing stays local and then a link back to internet.

0 Helpful

Go to solution
liviu.gheorghe
VIP
VIP
In response to TheGoob

‎03-18-2025 10:48 AM

You will be doing NAT on the FPR only fir traffic going to the Internet. 

Regards, LG
*** Please Rate All Helpful Responses ***
0 Helpful

Go to solution
TheGoob
VIP
VIP
In response to liviu.gheorghe

‎03-18-2025 11:45 AM

I am too literal. Would the ACL's still be on the FPR or would I move the ACL's to the Switch being the SVI's are there?

0 Helpful

Go to solution
liviu.gheorghe
VIP
VIP
In response to TheGoob

‎03-18-2025 12:22 PM

On the FPR you will have ACL’s for controlling traffic through the firewall. On the switch you will have only routing. 

Regards, LG
*** Please Rate All Helpful Responses ***
0 Helpful
Customers Also Viewed These Support Documents