- Joined
- Aug 17, 2002
Hey all,
My current home network goes through an all-in-one Netgear router/firewall/switch, but I'm changing to a dedicated Cisco setup (Not *really* nessecery, but it's good experiance for networking). I'm planning to have the folowing layout:
http://www.arbital24.com/Pics/NewNet.JPG
The reason that I want to use VLANs is because whilst my PC and etc should be able to connect to the internet, and the family PC should be able to connect to the internet, my pc should NOT be able to talk to the family PC. Yes, I know there are lots of other ways of doing this such as having them in different workgroups, utilizing all 4 ports on the PIX with/without switches, or with ACLs (with a router), I would rather avoid those choices of possible.
I don't have the Pix on me at the the moment, so I can't check, but I thought I would ask here before it arrives so I don't spend ages on it just to find out that it won't work:
Can I program the pix to allow the VLANS that should be talking to each other (1&2, 2&3) to talk to each other, in the same way as a "router on a stick" would? Or will I need a dedicated router on the switch? Since if I have to do that then it's extra expense.
I would assume that a second router is required, but the pix has 4 internal ports, and I do believe it can support some form of routing/access control between those, so I was wondering if it supported routing functions within one port? including subinterfaces?
Thanks!
Arby.
My current home network goes through an all-in-one Netgear router/firewall/switch, but I'm changing to a dedicated Cisco setup (Not *really* nessecery, but it's good experiance for networking). I'm planning to have the folowing layout:
http://www.arbital24.com/Pics/NewNet.JPG
The reason that I want to use VLANs is because whilst my PC and etc should be able to connect to the internet, and the family PC should be able to connect to the internet, my pc should NOT be able to talk to the family PC. Yes, I know there are lots of other ways of doing this such as having them in different workgroups, utilizing all 4 ports on the PIX with/without switches, or with ACLs (with a router), I would rather avoid those choices of possible.
I don't have the Pix on me at the the moment, so I can't check, but I thought I would ask here before it arrives so I don't spend ages on it just to find out that it won't work:
Can I program the pix to allow the VLANS that should be talking to each other (1&2, 2&3) to talk to each other, in the same way as a "router on a stick" would? Or will I need a dedicated router on the switch? Since if I have to do that then it's extra expense.
I would assume that a second router is required, but the pix has 4 internal ports, and I do believe it can support some form of routing/access control between those, so I was wondering if it supported routing functions within one port? including subinterfaces?
Thanks!
Arby.
