Setting up a network with multiple VLans and IP Routing
Greetings,
I have a Cisco 3750X with IP Software. Currently I have 2 VLANs, one internal and one external, and a Cisco ASA Firewall connected to both. Here are some partial configs:
Switch:
VLAN101 (External)
no ip address
VLAN102
ip address 192.168.0.1 255.255.255.0
VLAN103
ip address 192.168.1.1 255.255.255.0
ip routing
ip route 0.0.0.0 0.0.0.0 192.168.0.5 1
Firewall #1:
Interface G0 (External)
ip address (public IP address)
Interface G1 (Internal)
ip address 192.168.0.5 255.255.255.0
Firewall #2:
Interface G0 (External)
ip address (public IP address)
Interface G1 (Internal)
ip address 192.168.1.5 255.255.255.0
If I want to introduce a second Firewall with the external interface in VLan 101 and it's internal interface in VLan 103, how do I add route(s) to the switch to let users in Vlan103 use the 192.168.1.1 as their default gateway and have outbound traffic going out through 192.168.1.5 with declaring that IP as the default gateway on the devices?
Thanks!
I have a Cisco 3750X with IP Software. Currently I have 2 VLANs, one internal and one external, and a Cisco ASA Firewall connected to both. Here are some partial configs:
Switch:
VLAN101 (External)
no ip address
VLAN102
ip address 192.168.0.1 255.255.255.0
VLAN103
ip address 192.168.1.1 255.255.255.0
ip routing
ip route 0.0.0.0 0.0.0.0 192.168.0.5 1
Firewall #1:
Interface G0 (External)
ip address (public IP address)
Interface G1 (Internal)
ip address 192.168.0.5 255.255.255.0
Firewall #2:
Interface G0 (External)
ip address (public IP address)
Interface G1 (Internal)
ip address 192.168.1.5 255.255.255.0
If I want to introduce a second Firewall with the external interface in VLan 101 and it's internal interface in VLan 103, how do I add route(s) to the switch to let users in Vlan103 use the 192.168.1.1 as their default gateway and have outbound traffic going out through 192.168.1.5 with declaring that IP as the default gateway on the devices?
Thanks!
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Your question is not clear, as per my understanding we can use PBR to do the work.
You can use policy-based routing (PBR) to configure a defined policy for traffic flows. By using PBR, you can have more control over routing by reducing the reliance on routes derived from routing protocols.
BR,
Libi