My company has 2 3512's as our external publically addressed switches, these are what my load balancers plug into. Our Fw's are inside the LB and then we have two 3548's inside the FW's. I want to find out someone else's opinion on whether or not we should vlan and attach the 3512's to the 3548's for redundancy. we currently have a gig and fe connections between the 3512's and someone wants to put a gig connection between the 3512's and the 3548's using tagging.
I would like to see some documentation on whether this is safe or should not be done?
From your posting I understand that this means that you are physically "bypassing" the firewall? I do not think that it is intended that any traffic passes along this path, so the point of redundancy does not become clear to me.
The only point could be when you have insufficient ports on the 3512's and want to borrow a few from the 3548. This can be done and when you use two different vlans's for inside and outside, no one will notice, but ...
A misconfiguration or a defect could mean that you are bypassing your firewall.
At least you are making it physically possible that this can happen. Ever heard of Murphy? This would never be my choice.
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...
I am going to design and build an LAN network under a tunnel underground with long distance between the switches.
I will have 2 Catalyst switches and 8 Industrial IE3000, and they will be connected with fiber.
For now I am planning on use Layer-2 s...