Hi group ,
i have then following senario on transparent firewall . The pc and fw e0/1
belongs to vlan 10 and server , firewall e0/0 belongs to vlan 10.
10.0.0.1
pc1------------------------------[ swith
]-----------------------------------server 10.0.0.254
| |
| |
e0/1 | | eo/o
firewall.
when pc1 arps for server mac address. the server will respond to it . here i
get the logic of using two vlans even though the subnet is same
when pc 1 sends the frame with layer 2 dest add of server , the
swithch will forward the frame based on mac address table out to the
port
connected to server
just wanted to know where does firewal come in.
kindly guide me if i am wrong. i want every packet destined to server should
first pass through the firewall in l2 mode.
if the pc is sendig frames with server mac add as l2 destination
address..then i believe the switch will just look at frames layer 2 header ,
looks in cam table and simply forward it out of link connected to server.
thanks
Blogs and organic groups at http://www.ccie.net
Received on Sat Nov 13 2010 - 16:39:18 ART
This archive was generated by hypermail 2.2.0 : Sun Dec 05 2010 - 22:14:56 ART