SINGLE SITE WITH INTERNET ONLY

Single Site with Internet Only :-
Necessities
1. Web Access for Inside clients and Servers.(Inside to Outside activity stream)
2. Web Access for Servers on DMZ Zone (Outside to Inside activity stream)
3. No VPN.
Arrangement
– Internet Links will end on Internet Router which will be Gateway for Internet activity.
– Internet Firewall should give Perimeter security by means of particular Zones
Outside/Internet Zone (Security Level 0)
DMZ Zone (Security Level 50)
Inside Zone (Security Level 100)
Note – More on Firewall Security Zone is accessible here.
– Internet confronting entryways might be put on DMZ Switch (eg Web Server,Public DNS Server and so forth).
– Core Switch will in secured inside Zone of Internet Firewall will frame the layer 3 passage for all the Vlans to be specific – User Vlans,Inside Server Vlans,Management Vlan etc.It would be wanted to do Core Switch as entryway to every one of the Users/Server Vlans in Inside Zone and not the Internet Firewall. This training offloads the firewall from Layer2 communicate and ARP questions from Inside Zone User and Server Vlans endpoints.
– User Access switches and Server cultivate switches will associate straightforwardly to end has.