Right now we have all our InterVLAN routing done on the Firewall, but the I'm hoping to improve upon that now that our core switches are both 10gbe layer 3
Our current network is daisy chained this way down 1gbe Firewall (Fortigate 200E) --> 1gbe link to 1gbe layer 2 switch (Cisco SG200-26) --> 1gbe link to 10gbe layer 3 switch (Netgear M4300)
Now that I have another 10gbe Netgear M4300 to replace the Cisco with, I'm hoping to do the routing on the layer 3 switches, so that certain devices on different VLANs can talk to each other at 10gbe, and internet traffic can continue to go out through the Firewall at 1gbe.
Is this achieved by something like static routes / ACLs?
No comments:
Post a Comment