I want test FW infrastracture using a cat4500.
The firewall trust site is vlan 111 and the untrust site is vlan 222.
I use two linux boxes for testing, and one in vlan 111, another one in vlan 222. and they are all connect to a cat4500 switch, which one port configured as vlan 111 and another port configure as 222. I hope it will present the face that one linux behind firewall and one on another site.
when I push traffic through, are they will all go through the FW, or only first few packet go through FW and rest just go from one port to another directly?
my purpose is testing FW capacity.
It is a simple question, but, I am confused now.
Any comments will be appreciated
Thanks in advance