I'm replacing an Adtran layer 3 switch at our operations center with a Cisco 2821. I have the configurations for the Adtran from the ISP and I want to mimmick what they're doing on the switch. Basically, we have an MPLS circuit coming in on an Ethernet trunk that's carrying both secure traffic and Internet traffic. The secure traffic is on VLAN 360 (dot1q) and the Internet is VLAN 560 (dot1q). The secure traffic on 360 gets dumped right onto our LAN on VLAN 1 (default vlan) and the Internet traffic gets firewalled on a Sonicwall device which is then connected to LAN.
My 2821 has two gigabit ports G0/0 and G0/1 and I have a FastEthernet HWIC on the way which I'll call FA0/0.
The configuration I have in mind is to use FA0/0 as the trunk connection that will dump VLAN 360 and VLAN 560 tagged packets into the MPLS cloud. The confusion I'm having now is what to do with G0/0 and G0/1. I'm thinking about connecting G0/0 to the Sonicwall WAN port on VLAN1 and then connecting G0/1 to the LAN. What I'm unsure of is how to tag the packets coming out of G0/0 as VLAN 560 and the packets coming out of G0/1 as VLAN 360.
Can someone post a sample config that I can mull over? Let's use these IP addressesses:
2821 LAN IP: 184.108.40.206/24 (VLAN 1)
Secure MPLS traffic: 192.168.1.2 (VLAN 360)
Internet traffic: (VLAN 560)
Trunk Port: FA0/0 (VLAN 360 + VLAN 560)
LAN computers: 220.127.116.11/24 (VLAN 1)