Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
342
Views
0
Helpful
1
Replies

Switch Design issue-Help required

sairamteju
Level 1
Level 1

‎11-27-2009 01:24 AM - edited ‎03-06-2019 08:45 AM

Hi,

I require help in designing my network.We have a L3 switch who's default gateway is my firewall. We have lot of vlans in my switch, now we have decided to move some vlans on to the firewall.

We have decided to move 3 VLAn's on to the firewall. on firewall side We are using sub-interface concept and keeping all the 3 vlans on same physical port.

Now we will shutdown the L3 functionality of the Vlans and give the default gateway of one VLAN on the firewall interface.but my question is..wether the traffic of the other 2 VLAN's will pass to the firewall even after configuring trunking on one of the VLAN ports.   Please let me know as i am waiting for this as i ahve to implement tomorrow.

Thanks in advance.

Krishna.

Labels:
0 Helpful
1 Reply 1

Jon Marshall
Hall of Fame
Hall of Fame

‎11-27-2009 02:10 AM 

sairamteju wrote:
Hi,
I require help in designing my network.We have a L3 switch who's default gateway is my firewall. We have lot of vlans in my switch, now we have decided to move some vlans on to the firewall.
We have decided to move 3 VLAn's on to the firewall. on firewall side We are using sub-interface concept and keeping all the 3 vlans on same physical port.
Now we will shutdown the L3 functionality of the Vlans and give the default gateway of one VLAN on the firewall interface.but my question is..wether the traffic of the other 2 VLAN's will pass to the firewall even after configuring trunking on one of the VLAN ports.   Please let me know as i am waiting for this as i ahve to implement tomorrow.
Thanks in advance.
Krishna.

Krishna

It's not entirely clear what you are asking.

If you move the 3 vlans to the firewall using subinterfaces then each subinterface on the firewall will have it's own IP address.

So the switch would have a trunk port to the firewall. On the firewall you would have 3 subinterfaces and each subinterfaces has an address from it's vlan. The address that you assign to the subinterface is then the default-gateway for the clients in that vlan.

Jon

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card