Hi All, Just thought I would see what everyone else thinks of this problem that has been bugging me for ages.
Where I currently work one of the small firewalls that is set up uses a cisco 2620 which has a single Fast Ethernet and runs the firewall IOS (I know this not a real Firewall). The fast ethernet is set to be an ISL trunk and the outside, inside, and the seperate DMZs networks are all just vlans allowed on this trunk link and the switch it is connected too (2900 XL). What I am curious about has any one stuffed around with inject frame tagged packets into a switch or trying and trick a switch into thinking an end station is a trunk link. If you could inject any framed tagged packets your could affectively avoid having to go out through the router and straight into the internal network. It just seems a very dodgy way to setup a firewall and if any one can give me some strong reason why it would be greatly appreciated. Ashley Woodbridge CCNA CCNP CCDA CCDP Stratagem Concepts Pty. Ltd.
