NICs that support trunking (802.1q and ISL) are on the market for Intel platforms; I don't know about Solaris. Check out 3Com's 3C980B-TX.
Greg S.
-----Original Message-----
From: Adam Hudson [mailto:[EMAIL PROTECTED]]
Sent: Thursday, December 20, 2001 12:56 PM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Cc: Aaron Shilts (Aaron Shilts)
Subject: An obvious mystery to me... VLAN trunking on firewall
I am in search of an effective method of trunking (802.1q or ISL) traffic from a firewall to a Cisco 6509 platform (or any switch for that matter). It would be highly desirable to have a firewall (preferably CheckPoint/Nokia) in place that could interface to the switch on one or more links and perform VLAN communication (gig or copper). This would allow me to create many virtual segments for the firewall to deal with, without consuming large quantities of physical interfaces and expenses.
Perhaps the industry already has a solution available that I just have not heard of or come across yet? Is there any good hardware around that will perform this need?
I have several clients that would benefit from this functionality nicely, since they run many different private WAN connections and have the need to isolate them with switch port level security, layer-3 and firewall evaluation before entering the main sections of the network.
Obviously, this could be done with elaborate access lists and firewall IOS features in the MSFC cards, but having the control in Firewall-1 would be a lot easier on administration.
Adam Hudson
Networking and Security Consultant
Office 720-348-0564
Fax 720-294-0778
