VLANs on the firewall

Hi,

You need to create a static route on your firewall and configure your L3 switch' switch vlan interface (SVI) as next hop or your utm's physical interface facing the  L3 switch as exit interface and you need to configure a default route on your L3 switch pointing at the UTM's ip address as next hop.

 "Do i need to match the vlans that i have on my switch on the firewall?" - Yes you need to have a static route on the UTM for each vlan on the L3 switch.

hope that helps, kindly let us know of the results.

Regards,

Rap

Hi, Yahyaa, and welcome to the UTM Community!

We have no idea of the complexity of your topology, so we have to guess at what you want to do.  If you want the UTM to switch all of the traffic, yes, you will need the same VLANs defined on UTM.  There you will only need firewall rules allowing desired traffic.  Two things to be aware of with WebAdmin:

WebAdmin automatically creates routes between the subnets and IPs defined on Interfaces of the UTM.
The UTM is a stateful firewall, so you only need rules allowing requests to flow, response packets are automatically accepted.

Cheers - Bob