Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Our industrial network infrastructure is sitting behind a firewall (Fortigate) to isolate it from the enterprise network, just south of the firewall is our DMZ switch (Cisco 2960-X), a number of firewall DMZs are then mapped to their respective subn...
Still can't seem to communicate the two VLAN with hosts pointing to their respective SVI as gateway, does it matter that the switch has ACL deny ip any any set?
access-list 102 remark DMZ NETWORKaccess-list 102 deny ip any any
Here is my VLAN se...
You pretty much got the basic idea of the topology, inter VLAN/routing is done by the firewall.
Another suggestion I received is to use a bypass switch, configure it with IPs belonging to the different VLANs and route the traffic there instead.
