Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1729
Views
0
Helpful
1
Replies

DMZ - Layer 2 or Layer 3 switch?

trippi
Level 1
Level 1

‎06-11-2008 08:37 AM - edited ‎03-05-2019 11:33 PM

I have a pair of ASAs. I want to create a DMZ with a gigabit switch...is there any reason to use a layer 3 switch over a layer 2 switch? All the routing from internal/external to DMZ will be handled by the ASA...

Labels:
0 Helpful
1 Reply 1

Jon Marshall
Hall of Fame
Hall of Fame

‎06-11-2008 08:40 AM

No good reason to use a L3 switch, in fact it is more secure to only use a L2 switch and have routing off the ASA which is what you propose.

If you only had a spare 3560/3750 you could just turn ip routing off ie.

switch(config)# no ip routing

Jon

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card