This is typically how it's set up. Taking a switch as a shim to split the single ISP connections out to two or more firewalls. L2 separation is usually supported in most security policies. Using a stack with redundant switches is usually how I go about it. One ISP goes to one stack Member, and the 2nd ISP goes to the second stack member.
------------------------------
Dustin Burns
Lead Mobility Engineer @Worldcom Exchange, Inc.
ACCX 1271| ACMX 509| ACSP | ACDA | MVP Guru 2022-2023
If my post was useful accept solution and/or give kudos
------------------------------
Original Message:
Sent: Sep 27, 2024 11:59 AM
From: lvguajardo
Subject: ISP Switch for Failover process?
Hi,
we have a 24 port switch Aruba to connect 2 ISPs to 2 firewalls. with 2 vlans, example:
Vlan10
Port 1-->ISP1
Port2--->Firewall1
Port3--->Firewall 2
Vlan20
Port10-->ISP2
Port11-->Firewall1
Port12--->Firewall2
the problem i see on this is related to the switch, is a single power source switch....
can you please advise about better options to interconnect these 2 firewalls to 2 ISP, is there any better topology?
i was thinking on replace the switch, with a dual power source switch, but i wan to ask before if we have another stronger of more secure options in the market....
thanks in advance...