We help IT Professionals succeed at work.

Check out our new AWS podcast with Certified Expert, Phil Phillips! Listen to "How to Execute a Seamless AWS Migration" on EE or on your favorite podcast platform. Listen Now

x

vlan setup on procurve switch

Medium Priority
921 Views
Last Modified: 2012-05-07
At the moment I have a number of unmanaged switches that are going to be replaced with a HP ProCurve 4204VL switch
Please see the attached file for a screen dump of how the interfaces on our Firewall are configured.
Port 1 is the LAN - 172.16.0.0/16
Port 2 is the DMZ - 192.168.0.0/24
WAN1 is the WAN - 202.86.209.104/29

The current LAN switches are uplinked between each other.
The DMZ switch is one separate switch.
The cable out of Port 2 on the Firewall plugs into port 1 of this small switch then all the servers in the DMZ plug into separate ports on that same switch.

What I would like to do is segment off 4 ports on the ProCurve switch namely B17 to B20 and use B17 to connect to Port 2 on the firewall - B18, B19, B20 to connect servers.
Essentially I want to have a 4 port virtual switch within this 72 port physical switch.
All servers patched into the ports designated for the DMZ must be able to talk between each other and communicate back to the LAN via port B17.
As the configuring of the Firewall was a long and painful task, I don't not want to reconfigure that in any way.

I have attached the running config of the switch in the same attached file.

ProCurve-Config.doc
Comment
Watch Question

Unlock this solution with a free trial preview.
(No credit card required)
Get Preview

Author

Commented:
Hi,

The servers will only have one IP.

There will be a total of 3 switches - the core switch (ProCurve) a Netgear layer3 managed switch connecting to the core and an unmanaged netgear also connecting to the core.
There will eventually be just one switch on the network when the layout of the office changes.

Do I need to configure STP?
Would it be better for the ProCurve to do the routing rather than the firewall (FortiGate 110C)?

I have removed the "forbid' from the config - i was playing around with something.
I am unable to get NO SPANNING-TREE entered on the config.

Thanks
Unlock the solution to this question.
Thanks for using Experts Exchange.

Please provide your email to receive a free trial preview!

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.