I?m replacing 4 2950 switches for 2 3560 switches, there are several Vlans and for the most part the Firewall is doing all the routing. The current 2950s do not have a default gateway set, for any Vlan, so my question is should I setup a default gateway in the new switches, or does that make it less secure? Should I set an IP address for each VLAN and corresponding default gateway? There is only one VLAN with an IP and so long as I?m on one of the servers that are in the same subnet as the switches I can manage the switches. Currently the default VLAN, (1) is shutdown, unfortunately for me I didn?t install this network so I?m inheriting this and the admin that did is unavailable.
We are basically an eCommerce type infrastructure, where I have 3 layers, the Internet layer, the Application layer, and the DB layer.