Jon Marshall Wed, 09/08/2010 - 06:32
User Badges:
  • Super Blue, 32500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

after1111 wrote:

Hi guys, I'm kinda stuck and hope some one can give me some some advice,

See attached diagram for explaination.

I want traffic to go from ISP to PE, to CE, to switch 1 (layer3), to firewall, then back to switch 1 and then o to the Internet

The firewall performs packet inspection and routing traffic to the Internet.

If the ISP direct traffic to HSRP address using static route. What is the best way to setup on router1 and the firewall so that traffic route through the Internet.

I was thinking of enable routing on the firewall and router1.


Does you firewall have 2 interfaces ? If so a much better design would be to have the firewall between the L3 switch (switch 1) and the Internet. The way it is setup at the moment the Internet comes straight into a L3 switch which really isn't very secure at all.



This Discussion