Firewall: Cisco ASA 5512-X
Switch: Aruba 3810M (L3)
Switch IP: 10.240.1.254
Firewall IP: 10.240.1.1
DHCP Server (Win): 10.240.1.253
Setup from inside to outside
Switch -> Firewall -> ISP Fortigate Firewall -> ISP Modem -> Internet
I have a question about routing that im trying to understand.
Take one of my vlan for example: 10.240.10.0/24 (Corporate)
In the firewall the routing is set
route inside 10.240.10.0 255.255.255.0 10.240.1.254
VLAN is configured on the switch
IP addressing is assigned by DHCP server
On the Switch the default route is set to the firewall
ip default-gateway 10.240.1.1
ip route 0.0.0.0 0.0.0.0 10.240.1.1
ip routing
So our switch is sending all our inside traffic to the firewall to reach the internet
but now the firewall also has a route command inside sending inside traffic to the switch.
Im a little confused on this setup and how its working. I assume the route on the firewall I can get rid of?
No comments:
Post a Comment