Firewall Connecticity through Trunk Port

Unanswered Question
Apr 9th, 2006
User Badges:

Greetings


Attached please find the Network Design which is supposed to be deployed at my site.

The problem I am facing is the VLAN connectivity between firewall and the Untrust Networks. My Network is closed Network and received the Data from Untrust Sources via Dedicated Links. The all untrust networks are using different IP Schemes and Subnet Numbers.


I went through the Documents of Cisco Pix Firewall and try to do the configurations as mentioned there but somehow the trunk port is not working with Firewall although it is configured on switch as nonegotiate.


Can anyone suggest some solution?


The Pix firewall software version is 6.3(4) with UR license.


Regards


Mansoor Hafeez



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
plwalsh Mon, 04/10/2006 - 06:11
User Badges:

The PIX doesn't understand trunks. It examines the VLAN tags of any traffic on an interface and discards any traffic tagged for VLANs it has not been configured to understand.

The lines below are from a config I have used for over 1 year.


PIX Version 6.3(4)

interface ethernet1 100full

interface ethernet1 native_vlan_id physical

interface ethernet1 vlan2 logical

interface ethernet1 vlan3 logical

nameif ethernet1 NAME1 security_xx

nameif vlan2 NAME2 security_yy

nameif vlan3 NAME3 security_zz


after this is done you can add the IP addresses etc

Actions

This Discussion