Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Webcast-Catalyst9k
New Member

Internet connection routed port or VLAN

just an open question regarding the best way to set up the external internet connection on a LAN.

on our core switch we have a user subnet 192.168.1.0/24 on vlan10. the default gateway of which is the vlan interface on 192.168.1.1.

the internal address of our firewall is on 10.1.1.1 (this is the default gateway of the switch) and is also going to be connected in to the switch.

would it be preferable to set up an "internet" vlan and connect the firewall in to this; or to use a routed port on say 10.1.1.2?

any opinions are welcome...

1 REPLY
Hall of Fame Super Blue

Re: Internet connection routed port or VLAN

Mike

As long as the connection between your firewall and your switch is dedicated ie. no client/servers assigned then it really doesn't matter too much.

With firewalls we usually use vlans but that is because we have failover pairs and they need L2 adjacency. So if you think you will be looking to have a failover pair in future i would go with a vlan.

Jon

264
Views
0
Helpful
1
Replies
CreatePlease to create content