I have a 2824 with two vlans, 100 for prod and 103 for ip san. It's not currently in routed mode, but I want assign ips to the two vlans and set it up in routed mode so the switch can route traffic between servers and the san vlan for bandwidth reasons.
My issue is the lack of acl's, any client on a downstream switch in vlan 100 could see vlan 103 if they create a route to the vlan 100 ip. So, my only course of action is leave it in non-routed mode and tag a nic into the san vlan as I was going to do (waste of hardware and ports that I don't have lots of) or come up with something more creative. The HP routes by best match starting with "connected" routes, so I presume even if I setup a manual route for only the servers of choice to the ip san, the fact vlan 100 is "connected" as by default when its created sorta makes that useless? Obviously I am sure there is a way around this, anyone know what to do here? Thanks! jlc ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
