06-11-2008 08:37 AM - edited 03-05-2019 11:33 PM
I have a pair of ASAs. I want to create a DMZ with a gigabit switch...is there any reason to use a layer 3 switch over a layer 2 switch? All the routing from internal/external to DMZ will be handled by the ASA...
06-11-2008 08:40 AM
No good reason to use a L3 switch, in fact it is more secure to only use a L2 switch and have routing off the ASA which is what you propose.
If you only had a spare 3560/3750 you could just turn ip routing off ie.
switch(config)# no ip routing
Jon
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Log in to Community