Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
632
Views
2
Helpful
2
Replies

Ether-Channel configuration on 2 switchs to a single firewall

Go to solution
san ju.
Level 1
Level 1

‎11-10-2023 07:16 AM

Hello there,

My friend asked me a question about configuring a port-channel on two switches, each with only a single uplink to a firewall. Both switches have VLANs 10, 20, and 30, each with gateways configured on the firewall. While configuring a Router on a Stick (ROAS) technique would be straightforward for a single switch setup, the challenge arises when dealing with two switches that require the same gateway. Is it Okay for configuring switch with only single interface on port-channel? 

Alternatively, stacking the switches is another viable option. I would appreciate guidance on the best approach for this specific setup.

Please fine the attached diagram!

Thanks,

Sanju!

Labels:
Preview file
31 KB
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Joseph W. Doherty
Hall of Fame
Hall of Fame

‎11-10-2023 07:41 AM

To Etherchannel between the FW and two physical switches, the switches would need to be running something that supports that, such as your mention of stacking switches or VSS or vPC.

Or, assuming the FW can bridge two ports, you could also connect those links and use STP or break the physical loop.  This would also allow the FW to provide a GW to both switches, but actual traffic flow will depend on what link STP blocks.

View solution in original post

2 Replies 2

Go to solution
Joseph W. Doherty
Hall of Fame
Hall of Fame

‎11-10-2023 07:41 AM

To Etherchannel between the FW and two physical switches, the switches would need to be running something that supports that, such as your mention of stacking switches or VSS or vPC.

Or, assuming the FW can bridge two ports, you could also connect those links and use STP or break the physical loop.  This would also allow the FW to provide a GW to both switches, but actual traffic flow will depend on what link STP blocks.

Go to solution
M02@rt37
VIP
VIP
In response to Joseph W. Doherty

‎11-10-2023 07:54 AM - edited ‎11-10-2023 07:55 AM

Hello @san ju.,

Creating an EtherChannel between the firewall and two physical switches does indeed require a mechanism that supports it. As @Joseph W. Doherty suggested regarding stacking switches, using technologies like VSS (Virtual Switching System) or vPC (Virtual Port Channel), or having the firewall bridge two ports are all valid points.

Best regards
.ı|ı.ı|ı. If This Helps, Please Rate .ı|ı.ı|ı.
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card