Layer 3 Switch vs ASA, which one for inter-vlan routing?
I've been working on my GNS3 labs and I just finished configuring Routing on a Stick: Trunking (L2 switch w/multiple VLANS and trunk interface to > Router); and I've also completed a lab with L3 Switching and SVI's. From what I've seen in some environments most network setups looks like this, Server > L2 Switch > ASA (ASA Handles Inter-vlan routing); another alternative to that would be Server > L3 Switch > ASA; In this latter scenario where would/should the inter-vlan routing happen? Could a L3 switch and ASA work together? Are there benefits to either setup? It seems to me that the ASA at it's heart is a L3 switch with WAN capabilities so is there even need for a L3 switch? What's the most common setup for ASA's?
If I can apply ACL's to a L3 switch then what additional benefit can the ASA provide that the L3 switch can't do? Couldn't the L3 switch accommodate the special security constraints on inter VLAN traffic routing? I've read that by default L3 switches allow all traffic opposed to ASAs which block all traffic.
[toc:faq]The ProblemOn traditional switches whenever we have a trunk
interface we use the VLAN tag to demultiplex the VLANs. The switch needs
to determine which MAC Address table to look in for a forwarding
decision. To do this we require the switch to do...
[toc:faq]Introduction:Netdr is a tool available on a RSP720, Sup720 or
Sup32 that allows one to capture packets on the RP or SP inband. The
netdr command can be used to capture both Tx and Rx packets in the
software switching path. This is not a substitut...
IntroductionOSPF, being a link-state protocol, allows for every router
in the network to know of every link and OSPF speaker in the entire
network. From this picture each router independently runs the Shortest
Path First (SPF) algorithm to determine the b...