2 Posts
0
582
January 13th, 2021 06:00
Configure Policy Based Routing on N3000
I am migrating to a new firewall. I'd like to migrate with both the existing and new firewall active. I have a core N3048 switch that is connected to my existing firewall. I'd like to connect my new firewall to the core switch and route one of my VLANs to the new firewall. I think I can accomplish this through Policy Based Routing. Is this correct? And if so, will configuring PBR for this VLAN affect any other VLANs or any other operations on the switch. I have 'IP Routing' configured on the switch and I plan on applying the PBR to one VLAN interface only.
No Events found!
DELL-Tim G
3 Apprentice
•
73 Posts
0
January 14th, 2021 06:00
The approach works as long as each of your VLANs has a separate IP subnet associated.
A good example of the concept can be found here.
Tim
DELL-Tim G
3 Apprentice
•
73 Posts
0
January 13th, 2021 09:00
Hi,
depending on your layer 3 topology it might be enough to just place a static route on the N3048
for the subnet beloning to the VLAN which should migrate pointing to the new firewall.
You may test this with a non-production subnet and don't forget the return routes.
Policy based routing normally makes more sense if you want to pick specific traffic flows via ACL match to route them to alternate paths or to do something else with them.
Regards,
Tim
abevelacqua-orangetown.com
2 Posts
0
January 13th, 2021 10:00
I need to ensure that *only* the specified VLAN should be routed to the new firewall. This is a test VLAN. All production traffic will still route to the existing firewall. Would it still work in the way you suggested?