Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
430
Views
0
Helpful
1
Replies

VLAN as Firewall Zones

paulo.roque
Level 1
Level 1

‎03-21-2003 04:50 AM - edited ‎03-09-2019 02:36 AM

Hi.

I usually separate firewall zone with different physical LAN in different switches.

What do you think of separating firewall zone with VLANs in the same switch/chassis?

Paulo

Labels:
0 Helpful
1 Reply 1

donewald
Level 6
Level 6

‎03-21-2003 11:16 AM

Paulo,

Many do this but it all depends on your Security policy. If physical separation is a requirement is needed (some security certifications require this as well) then you cannot do this. Also the risk of someone compromising your switch and being able to add/remove ports from your secure VLAN would be there.

Hope this helps you,

Don

0 Helpful
Customers Also Viewed These Support Documents