Cisco PIX Firewall and HP Procurve Switches

[ravkular]

Hi,

I want to have 8 vlans (7 vlans for separate business offices and one vlan for the internet cnnection) which all use the same internet connection. The connection comes in throught a D-Link router and then through a Cisco 515E PIX firewall. I have set up the Vlans on the Procurve (2524) and they are fine, but i cant seem to share the internet amongst them. I have set up Vlan Tagging on the Procurve. Do i need to set up VLans and vlan tagging on the firewall? or has anbody any other suggestions ?

Any feedback at all would be greatly appreciated.

Thanks

Rav K

 

[ralpheb]

Hello Rav -

I get the impression that the 2524 is directly connected to the 515E PIX firewall, although you did not specifically say that. If they are connected, then they need to be configured compatibly with respect to tagging and VLANs. That is, if the 2524's port that connects directly to the PIX firewall is tagged (for multiple VLANs), then the corresponding 515E port must be tagged, specifically with the same VLAN IDs, if those two devices are to communicate on all 7 VLANs. If the 515E's port (which is connected to the 2524) is untagged, then the 515E will drop all tagged traffic coming from the 2524.

This is a lot easier to explain with diagrams. Have you looked at the manual (ftp://ftp.hp.com/pub/networking/software/59692354.pdf pages 9-51 on)?

Regards,
Ralph