Hot Downloads

Welcome, Guest
Username: Password: Remember me
  • Page:
  • 1

TOPIC: Intervlan firewall

Intervlan firewall 11 years 3 months ago #20283

  • Rugge
  • Rugge's Avatar Topic Author
  • Offline
  • New Member
  • New Member
  • Posts: 1
  • Thank you received: 0
Hi,

We have a Cisco switched network with a number of vlan's. We have two 4006 vtp server switches where the intervlan routing is taking place. On these 4006 switches we have rather big and growing ACL's applied to the different vlan interfaces.
As you know administration of ACL's is a little difficult and not admin friendly. I can do it, but my workmates who do not have very deep network and Cisco knowledge can't.
I'm wondering if we can move the ACL's away from the Cisco switches and put them on an opensource firewall with gui administration?
I'm concerned about performance and wondering if this is a recommended setup or if there is a more clever way to move away from ACL's?

Kind regards,
Rutger

Please Log in to join the conversation.

Re: Intervlan firewall 11 years 2 months ago #20411

Yes, build layer 2 vlans which spans both switches and put a firewall interface in each of the each. Then, use the firewall interface as your default gateway for each of the respective vlan. Perhaps you can just do router on a stick and put your ACLs on the router.

Hi,

We have a Cisco switched network with a number of vlan's. We have two 4006 vtp server switches where the intervlan routing is taking place. On these 4006 switches we have rather big and growing ACL's applied to the different vlan interfaces.
As you know administration of ACL's is a little difficult and not admin friendly. I can do it, but my workmates who do not have very deep network and Cisco knowledge can't.
I'm wondering if we can move the ACL's away from the Cisco switches and put them on an opensource firewall with gui administration?
I'm concerned about performance and wondering if this is a recommended setup or if there is a more clever way to move away from ACL's?

Kind regards,
Rutger

Please Log in to join the conversation.

  • Page:
  • 1
Time to create page: 0.119 seconds

CCENT/CCNA

Cisco Routers

  • SSL WebVPN
  • Securing Routers
  • Policy Based Routing
  • Router on-a-Stick

VPN Security

  • Understand DMVPN
  • GRE/IPSec Configuration
  • Site-to-Site IPSec VPN
  • IPSec Modes

Cisco Help

  • VPN Client Windows 8
  • VPN Client Windows 7
  • CCP Display Problem
  • Cisco Support App.

Windows 2012

  • New Features
  • Licensing
  • Hyper-V / VDI
  • Install Hyper-V

Linux

  • File Permissions
  • Webmin
  • Groups - Users
  • Samba Setup