Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
576
Views
0
Helpful
2
Replies

bvi and vlan traffic through router

ruessd-wawa
Level 1
Level 1

‎09-25-2009 07:34 AM - edited ‎03-06-2019 07:53 AM

I have a 2811 router with a single BVI to a 2960 switch with 3 vlans. There is a transparent firewall on the 2811 router. Currently, traffic between 2 nodes on the same vlan segment traverses the transparent firewall causing latency. Is there a way to configure the vlan on the switch such that traffic will not be passed through the firewall when not leaving the vlan?

For example, a LAN based Nessus scan of hosts on VLAN1 from a port on VLAN1 causes the utilization on the router memory and processor to 100%. Thanks,

Dave

Labels:
0 Helpful
2 Replies 2

John Blakley
VIP Alumni
VIP Alumni

‎09-25-2009 09:02 AM

Are you running CBAC or a zone based firewall? Where is the policy for the firewall applied?

HTH,

John

HTH, John *** Please rate all useful posts ***
0 Helpful

ruessd-wawa
Level 1
Level 1
In response to John Blakley

‎09-25-2009 09:11 AM

Zone based firewall, policy is applied to the BVIs. Such as

policy-map type inspect BVI1

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card