DMZ SWITCH
I have a dmz switch (3560) running in our network. Now we have a single point of failure and I wish to add a second switch. I am running private-vlan scheme. I want to configure a trunk port using sfp gigabit interface. Please should I do a private vlan mapping on my trunk port.
Should my primary interface on the new switch have a different ip address.
Thanks
Should my primary interface on the new switch have a different ip address.
Thanks
Who is Participating?
LVL 7
If they are going to up and running at the same time, then you need a unique IP address for the new switch. I would just do a trunk between the switches including all the VLANs since you may at any moment move computers from one switch to the other.
It depends on what your doing. Are there multiple VLANs on your DMZ? where is the firewall located in relation to these switches. If your just trying to add a second switch for disaster recovery purposes or more capacity, then just configure a trunk between the two switches with a cross over cable between them.
I am doing a direct connection between my two 3560 using fiber gbic. I have multiple private vlans and a two regular vlans. Would it be prudent to just configure a port without mapping the private vlans via the trunk and do I need a different ip address for this new switch or just a replica of my other switch.
Thanks
Thanks
Question has a verified solution.
Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.
Have a better answer? Share it in a comment.
All Courses
From novice to tech pro — start learning today.
-
Course of the Month10 days, 21 hours left to enrollMonitoring and Operating a Private Cloud with System Center 2012 R2 273 lessons
