I have a Catalyst 3560G layer 3 switch, I am trying to configure the switch to route traffic between vlans without using our Watchguard firebox to route between them. The WG also currently gives all devices DHCP and this device must be the default gateway for all hosts. The layer 3 switch sits between the hosts and the WG. Can this be configured to route the packets without being the default gateway?
>> Can this be configured to route the packets without being the default gateway?
user PCs will use their default gateway, that must be a device with an ip address in the same subnet.
So you can deploy inter vlan routing in parallel with the other box but DHCP clients will not use it unless they add a route in the OS shell pointing to the L3 switch ip address in their subnet.
Be aware that this can create security holes if all traffic is supposed to go via the other device that may be implementing security policies.
if you want to keep the WG for internet traffic you need to add a specific route for all the private network pointing to the L3 switch in all devices or you need to have the L3 switch takes the ip address that WG advertises in the DHCP leases.
Hope to help