Options

TPS deployment with VLANS

OtakireOtakire Member
in TPS - DDoS Protection

Hi everyone,

I’m trying a new implementation for a TPS appliance 

The architecture is the following, there is going to be two internet connections directly to the TPS appliance then the TPS will make Vlan Tagging the traffic and send it to the Switch Core that will forward that traffic to the Firewall by the trunk interface.

ISP -> TPS -> VLAN Tagging -> Switch Core -> Firewall

I made a lab test for this architecture if I don’t use VLAN Tagging everything works correctly, but if I use VLAN Tagging the traffic never reaches the destination and in the TPS via TCPDUMP I can see the ARP requests without any ARP responses

I need to know if this configuration of the architecture is functional or I’m missing anything.

Thanks in advance for your comments,

Erik P.

Tagged:

Comments

  • Options
    oscarolleroscaroller Member

    Hi Erik.

    You need create all vlans inside the TPS, and assign as tagged to the ports, from my experience this config should works fine. You need enable a protection DDoS with a zone configured also.

    Regards.

Sign In or Register to comment.