Typically in this scenario, all of your clients would use your layer 3
switch as their default gateway (the layer 3 switch is mutli-homed, so each
client points to the interface of the switch for their respective VLAN), and
the switch itself uses the firewall as its default gateway. Then, create
routes on the firewall to direct traffic for all the VLANS back to the layer
3 switch.
Please write me back directly if I'm not making sense.
Dan Hitchcock
CCNA, MCSE
Network Engineer
Xylo, Inc. (formerly employeesavings.com)
425.456.3970
The work/life solution for corporate thought leaders
-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Thursday, October 05, 2000 9:02 PM
To: [EMAIL PROTECTED]
Subject: [FW1] VLAN-Checkpoint
Hi all,
Present setup :
CP Firewall 4.1
Layer2 Switches used in the Private zone
Layer2 Switches used in the DMZ zone
(total three zone : 1. External (connected to the internet) 2.DMZ 3.Private.
Natting is done on the firewall to Class B IP Address range.
Later we are planning to shift to Layer3 switching internally. i.e VLAN's.
In Case of VLAN's what will be my gateway, is it the firewall for all the
subnets, if yes does that mean all the traffic flows thru single firewall
interface ?
or
is that I have to create multiple virtual interfaces on the firewall ?
pl suggest how to go about it...
thanks
regs
sathish m r
============================================================================
====
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
============================================================================
====
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
