Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Bridging a WAN and a LAN interface and using VRFs

Say I have a router with an Internal Company WAN, and a Internal Company LAN interfaces - these are associated with VRF "internal". I also have and External Internet WAN and an External Internet LAN interfaces associated with VRF "internet".

Is there any way I can get the two interfaces associated with the "internet" VRF to pass traffic from WAN to LAN transparently, and thereby enabling me to avoid configuring an IP address on either interface and hence reducing security exposure? I would rather not use ACLs or access-classes and route but pass internet traffic straight trough to an internal firewall, essentially by bridging the two interfaces.

Thanks in advance, Nik.

2 REPLIES

Re: Bridging a WAN and a LAN interface and using VRFs

You cannot have 2 VRFs associated with a single interface.

What you can do is probably leak a default route for the internet on the internal VRF or import the route-targets as necessary

HTH

Narayan

New Member

Re: Bridging a WAN and a LAN interface and using VRFs

Sorry - I meant say i have a pair of interfaces, one pair assigned to VRF "internet" and another pair "internal". I want to get the internet interfaces to pass layer 2.

126
Views
0
Helpful
2
Replies
CreatePlease to create content