Say I have a router with an Internal Company WAN, and a Internal Company LAN interfaces - these are associated with VRF "internal". I also have and External Internet WAN and an External Internet LAN interfaces associated with VRF "internet".
Is there any way I can get the two interfaces associated with the "internet" VRF to pass traffic from WAN to LAN transparently, and thereby enabling me to avoid configuring an IP address on either interface and hence reducing security exposure? I would rather not use ACLs or access-classes and route but pass internet traffic straight trough to an internal firewall, essentially by bridging the two interfaces.
Thanks in advance, Nik.