Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

bvi and vlan traffic through router

I have a 2811 router with a single BVI to a 2960 switch with 3 vlans. There is a transparent firewall on the 2811 router. Currently, traffic between 2 nodes on the same vlan segment traverses the transparent firewall causing latency. Is there a way to configure the vlan on the switch such that traffic will not be passed through the firewall when not leaving the vlan?

For example, a LAN based Nessus scan of hosts on VLAN1 from a port on VLAN1 causes the utilization on the router memory and processor to 100%. Thanks,

Dave

2 REPLIES

Re: bvi and vlan traffic through router

Are you running CBAC or a zone based firewall? Where is the policy for the firewall applied?

HTH,

John

HTH, John *** Please rate all useful posts ***
New Member

Re: bvi and vlan traffic through router

Zone based firewall, policy is applied to the BVIs. Such as

policy-map type inspect BVI1

362
Views
0
Helpful
2
Replies