you right.

i really have a 2950 SW,

but what is the difference between layer 2/3 vlans?

i need 2 vlans that will go trough the trunk to the FW and then routed to their places.

does it work?

and what about address to vlans? in other words, which command / configuration i need except the vlan 1, exit. vlan 2, exit.

? thanks

it's 2950 series sw.

is there software upgrade that can support real work vlans on that SW?

Hi

No it is not possible as u r 2950 is a pure layer 2 switch which can have the funtionality of layer 3 even if u upgrade the software.

Thanks

Mahmood

OK i got it, so now i need another solution

I have a core 2950 SW that connected to a checkpoint FW, and a 2 cisco 2950 SWitces

i want to different networks,

so i connect 1st sw to the core, and the 2nd to the core to (without connecting the 2 new together, 1st will be 192.168.1.x and 2nd will be 192.168.2.x) and i will connect 1 port in the core SW to a dmz NIC in the cp fw. 192.168.2.x

and the existing port connected to the lan nic in 192.168.1.x

it's now so securly but less broadcast i think i have.

anyway, does it work?

and if u have something to add/modify

please tell me

i ask the customer

and he told me that the core sw is 2950 series and it has work vlans on it allready, so i checked and i saw that the core sw is Enhanced ImageWS-C2950G-24 EI

and the new SWitches are WS-C2950sx-24 Standard image only

does it make the differnce?

* does the diffrence is only at the image or at the hardware to?

The difference is only in the image and featuresets Like ehanced security, QOS and acl's.

2950 Swithes with Enhanced image

http://www.cisco.com/en/US/products/hw/switches/ps628/products_data_sheet09186a00801cfb64.html

2950 Switches with Standard image

http://www.cisco.com/en/US/products/hw/switches/ps628/products_data_sheet09186a00801cfb71.html

HTH,

-amit singh