Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

VLAN as Firewall Zones

Hi.

I usually separate firewall zone with different physical LAN in different switches.

What do you think of separating firewall zone with VLANs in the same switch/chassis?

Paulo

1 REPLY
Silver

Re: VLAN as Firewall Zones

Paulo,

Many do this but it all depends on your Security policy. If physical separation is a requirement is needed (some security certifications require this as well) then you cannot do this. Also the risk of someone compromising your switch and being able to add/remove ports from your secure VLAN would be there.

Hope this helps you,

Don

212
Views
0
Helpful
1
Replies
CreatePlease to create content