Hi all, our company have recently had a new internet circuit installed in the main office building to replace the old ADSL circuit with a 1GB circuit.
They have provided us with a Cisco C3560 and told us that only port Gi0/2 can be used - so they’ve only given us one interface. However, we have two firewalls - a primary and a backup just in case and we want to setup an interface on them both.
So I have used an unused Dell N1500 series switch to become our WAN switch so we can pass multiple interfaces (one coming in from the ISP, then two going out - one to each firewall). We have more than enough IP’s on the circuit so we can configure static IP’s on the firewall interfaces. I’ve configured a VLAN (100), and I just have two questions.
1) do we need to tag the port coming from the ISP into the WAN switch on VLAN 100 as a switchport access or trunk
2) do we need to tag the port coming from the WAN switch to the firewalls on VLAN 100 as a switchport access or trunk
Thanks in advance, this was the job of a previous employee but sadly they are no longer with us and has been passed onto me. It’s been over 10 years since I’ve done anything like this as I’m now as Service Desk Manager so any help is greatly appreciated.
No comments:
Post a Comment