hello everyone,
I got a question regarding Zone Based Firewall and service module on a 3925 router. In fact, i want to acquire à 3925 router with the Security plus license to implement ZBF and filter inter-vlan traffic and especially inside-->outside traffic. The 3925 will be added a Service Module SM-ES3G-16-P to implement routed port (physical) and SVI (Switched Virtual Circuit).
In fact each VLAN will be connected to an SVI according to this figure :
My question are pretty simple :
- Is it possible to created ZBF rules and specified the SVIs attached to the service module (ZBF won't apply only on the 3 integrated interfaces of the 3925) ?
- I also want to know if it is possible to implement WCCP on SVI located in the inside area ?
- Would SVI on the outside handle NAT/PAT ?