01-04-2024 12:37 AM
Hello Guys,
I planned to migrate the perimeter cisco switch, One port is connect to organization fortinet fireal that port is DMZ and the other port is connect to Internet.
How to start from where ? i didn' t migrate any perimeter switch so need to be very carefull.
Thanks
Solved! Go to Solution.
01-04-2024 01:48 AM
Perimeter SW but between the ISP and FW or Edge router
so the only think you need to care about is
1- the VLAN use if the forti FW use VLAN SVI, if the forti use VLAN SVI you need to use trunk even if you need to allow only one VLAN in trunk this make SW push tag packet to forti
2-same as above if forti use subinterface
3-security, we talk about l2 security the preimeter use to protect the FW or edge from DDoS and you can use strom control for this protection
MHM
01-04-2024 01:01 AM
- Initially you will copy the configuration from the old switch to the new switch ; now on the new switch you may need modifications due to interface naming , VRF's ,...
M.
01-04-2024 02:08 AM
That's simple to copy and push to the new switch the main question is about how to maintain the link to stay up like VRRP GLBP HSRP ? active and standby or primary and secondry then take out the old switch.
01-04-2024 01:42 AM
Assuming you moving to a new switch (same OS platform), you need to pay attention to new default values introduced including services. Configuration wise is should be pretty much the same.
01-04-2024 01:48 AM
Perimeter SW but between the ISP and FW or Edge router
so the only think you need to care about is
1- the VLAN use if the forti FW use VLAN SVI, if the forti use VLAN SVI you need to use trunk even if you need to allow only one VLAN in trunk this make SW push tag packet to forti
2-same as above if forti use subinterface
3-security, we talk about l2 security the preimeter use to protect the FW or edge from DDoS and you can use strom control for this protection
MHM
01-04-2024 02:15 AM
Just to give you an idea my diagram its just assuming my diagram.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide