Wired Intelligent Edge (Campus Switching and Routing)

Reply
New Contributor

Multiple VLAN's with one internet connections

Hello everybody,

I'm setting up a network for a WeWork kind of scenario, when a bunch of different businesses share a common infrastructure. I have a bunch of 2930F switches and a Check Point 790 Firewall/Router that connects to the Internet. I want to assign every business a dedicated VLAN and subnet to segregate them, so they cannot see each other, but they could get Internet connectivity and DHCP from the router for each subnet.

 

A good guide would be much appreciated!

MVP Expert

Re: Multiple VLAN's with one internet connections

Greetings!

 

As you have a dedicated firewall/router appliance to perform the role of gateway and traffic segregation, the best solution in this case would be to use Layer 2 VLANs on the 2930F (no IP addressing), untagged on the client ports and tagged across the uplink to the Check Point appliance, which would use firewall rules and/or ACLs to prevent inter-VLAN routing while permitting each business to utilize the shared Internet connection.



Matt Fern
Technical Marketing Engineer, Wired Intelligent Edge

Aruba, a Hewlett Packard Enterprise company

8000 FOOTHILLS BLVD  |  ROSEVILLE, CA 95747
T: 916.540.1759  |  E: mfern@hpe.com   |   Matt @ Twitter
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: