I have been wrestling with the best design for my network. I would like to take advantage of the MLS features of a 4506 but want to pass the traffic through my PIX. I would like to minimize the vlans needed off the PIX and have the routing take place at the switch to pass through the firewall and then back down to the various vlans.
I have 7 vlans all one one physical switch. I would like to use the switch to route but I need the traffic to go to the firwall. In other words when 2 vlans on the same switch need to talk to each other I want to control access through the FW.
In an ideal situation I would suggest to upgrade your pix to the latest 7.x ver IOS and use a trunk link to 4506. Create dot1q vlan interfaces on the pix and have the control over the trafiic passing through the PIX. this is the only optimal design that i can suggest and think for you.
We have 3 identical switches configured by someone else and would like to claim some of the Gigabit ports(G1/G2/G3/G4) for use on servers. When we try to change the wiring and configuration, we run in to connectivity issues. Attached is a des...
This is actually a pretty cool feature, i didn't even know it existed until I was looking for a solution to advertise a subnet (prefix in BGP talk), only if a certain condition existed. This is exactly what conditional advertisements does
j ai une question j ai achete un routeur cisco 887VA-k9 , je le configuré avec la configuration ci- dessous
si je le lier avec mon pc portable sur l un de ses ports directement ça marche toute est bien ( la connexion internet + m...