I've got a client here in our datacenter with some custom equipment, and they're asking me to set up Inter-VLAN routing. This would be simple enough if the VLANs were all on a single device, but with this setup [and 5 intervening years since I last did anything like this in a lab env] I believe I am in over my head.
Currently from our public network they have PIX 515E firewall put through to a Cat 2950 put through to a Cat3550. The public IP addresses stop at the PIX and the NAT rules take over to their internal network, the 2950 is a 'dumb' switch with no configuration at all, [see note] and the 3550 currently has 6 VLANs. The endgame right now is to configure inter-VLAN routing between VLANs 1 and 6. The rub is that VLAN1 [their 24/7 heavily used production network] has its default gateway on the PIX, and VLAN 6's gateway resides on the 3550. If both gateways were on the 3550 I could do this with the docs I already have, but with the gateway on the PIX box along with 800+ lines of config I've no clue. If the PIX could handle the routing this would be simplified, but as far as I know this is not the case.
The one thing that we need to do, if in any way possible, is avoid any downtime for VLAN 1. It's hard enough to schedule maintenance downtime for just one of their servers, but taking down their production network would be a logistical nightmare.
note: The client is migrating from their previously flat network on the 2950, to the new configuration on the 3550. Once everything has been switched over to the appropriate VLAN the trunk port on the 3550 will be moved over to the PIX and the 2950 removed.
Any help or suggestions are VERY much appreciated, and please let me know if you need any more detailed informaton about the configuration.