- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
08-20-2014 10:35 AM
I was hoping to get some direction. I have deployed a PA500 in a small office using a standard L3 deployment (one trusted (LAN) and one untrusted (WAN) interface) and need a few switch-ports on the LAN side for access points. Is it possible to add additional interfaces to the trusted zone and use them as switch ports in the same subnet and virtual router as my current L3 trusted interface?
I found the document in the KB explaining how to connect L2 and L3 networks but I don't think that is what I need to do.
I really don't want to put a cheap 8-port switch in front of my nice firewall 🙂
08-20-2014 11:23 AM
You can create a vlan group for this purpose and replace your current L3 interface with a vlan interface.
08-20-2014 11:23 AM
You can create a vlan group for this purpose and replace your current L3 interface with a vlan interface.
08-21-2014 12:31 PM
Hello Adam,
Here I have taken Example for Ethernet1/9 as a port to be in VLAN1.
1. Delete Configuration for L3 Ethernet Port.
2. Create L3 VLAN, as mentioned bellow.
2. Change Etherenet 1/9 into Layer 2 Port.
3. Add Etherenet 1/9 into VLAN
Likewise you can add more ports to same VLAN.
Let me know if this helps.
Regards,
Hardik Shah
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!