l2 vs vw

Reply
L4 Transporter

l2 vs vw

Hi,

What is the differnce between l2 mode and vw mode 

Thanks

L7 Applicator

Re: l2 vs vw

Check out the documentation here:

 - https://www.paloaltonetworks.com/documentation/71/pan-os/pan-os/networking/interface-deployments#739...

 

Let us know if you have any specific questions after reading that.  

L4 Transporter

Re: l2 vs vw

Hi,

Thank you for the quick reply .

 

the firewall now rewrites the inbound Port VLAN ID (PVID) number in a Cisco per-VLAN spanning tree (PVST+) or Rapid PVST+ bridge protocol data unit (BPDU) to the proper outbound VLAN ID number and forwards the BPDU out

What does it mean by the rewrite 

Thanks

L7 Applicator

Re: l2 vs vw

in short:

 

a vwire acts as a "bump in the wire" so it does not 'participate' in network traffic, it simply forwards between the 2 interfaces (unless something needs to be blocked ofcourse :) )

in layer2 mode, the port acts like a switch and can rewrite vlan tags, so packets incoming tagged with vlanID 200 can be egressed on vlan 300 for example. packets can also be received and sent out on any of the systems layer2 interfaces set to a specific vlan tag (so more than 1 interface can be in a specific vlan)

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!