New gold install into a segmented network

Follow

Okellyro

• August 27, 2020 12:51
• Edited

Installing the Gold into a network with multiple segments an am trying to figure out the best approach ... I have a router (ER4) and switch (ES8) across which I have 7 + vlans ... the majority of the segmentation is to achieve islands of isolation .... am unsure what the best way to integrate gold into setup ( trunking ) or what alternate approach I should take ... My imagined preferred approach is to plug the firewall a into a truked port , define the vlans on the gold and let it go ... not sure how the gold will take to that though

0

• 

  Firewalla

  • August 27, 2020 16:12

  Do you want to run the gold in router mode?  You need to decide this first.

   

  0

  Comment actions Permalink
• 

  Okellyro

  • August 27, 2020 16:59
  • Edited

  I don’t think so ... unless ther is a specific reason to remove the purpose built router out of the equation ( ER4 is a fairly good router/firewall and combined with the EsdgeSwitch provides a really nice management plane + performance  ) ... I’m thinking. Use the switch as a switch the router as a router + with FW setup and then layer in the Gold into the vlans .... multiple and different protections

  0

  Comment actions Permalink
• 

  Okellyro

  • August 27, 2020 19:06
  • Edited

  So the question is ... can the gold be plugged into a port that has rights to all vlans and do what it does from there across all exposed vlans in simple mode

  0

  Comment actions Permalink
• 

  Firewalla

  • August 27, 2020 20:30

  Yes, you can plug the Gold into a trunk port (tagged port) and then configure it in simple mode for any VLAN's you want.   Here is the document for it https://help.firewalla.com/hc/en-us/articles/360053353753-Firewalla-Gold-Tutorial-Advanced-Simple-Mode-Example-with-VLAN-

   

  0

  Comment actions Permalink

Please sign in to leave a comment.