Dear guru,
We are going to have a single Check Point gateway, possible to connect the gateway to our two Cisco 4507, how the cable physically connected in order to have the redundancy of the single point of the switch?
please advise, Nick
If your firewall only has a single inside LAN interface then you can only connect it to a single switch. In order to have redundancy you would have two firewalls connecting to two switches.
Chris.
Hi chris,
thanks for your advise, We have sufficient NIC that actually connect one port for each 4507, however, our firewall only can run on router mode, different interface has difficult subnet, if two ports are used to connect to each 4507, then two interfaces would be on two separate subnet.
is there something we can do on the switch?
chris wrote:
Nick,
The switch isn't your problem, the firewall is. As you say when you configure a Checkpoint firewall each interface needs to be on a seperate subnet.
To be honest, there's no point in worrying about a single point of failure on the switch. You have a single point of failure anyway ... the firewall! If you do want redunancy then you would run two switches, two firewalls and two routers.
Chris.
Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.