This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Vlan routing

Goldy over 2 years ago

Hi everybody.

I'm having a unique configuration.

I have 20 vlans, all connected (and routed to each other) by a HP core switch.

The core switch connects to the firewall and the firewall is the gateway.

all is working great for a long time.

Now i want the Firewall to do all the routing for two Vlans (I can stop Layer 3 in the core switch for those vlan, so no routing for those vlans in the Core).

Can i and how achieve this.

Best regards
Goldy

This thread was automatically locked due to age.

Top Replies

Alan Brand over 2 years ago +2

Easy. Just remove the IP address from these VLANs in the core switch, so no routing happens. Add a trunk with these two and one of the routed VLANs to a port and link it to the UTM. In the UTM create …

0 Alan Brand over 2 years ago

Easy. Just remove the IP address from these VLANs in the core switch, so no routing happens.
Add a trunk with these two and one of the routed VLANs to a port and link it to the UTM.
In the UTM create "Ethernet-VLAN" interfaces for the relevant VLANs and assign IPs to them (also DHCP if required).
Add routing and firewall entries as needed.

We use this to have separate VLANs for visitors and other critical devices (i.e. IoT).
The visitor VLAN will be assigned not only to WLAN but also to wired devices unknown to MAC security and 802.1x (RADIUS fallback VLAN).
If wanted (and licensed) you can add the WiFi hotspot portal to this VLAN, it will not only work for wireless devices but also for wired guests.
Cancel
Vote Up +2 Vote Down

Cancel
0 Goldy over 2 years ago in reply to Alan Brand

Thanks.
I'll give it a try...
Cancel
Vote Up 0 Vote Down

Cancel