Quote:
| With just one physical network there is no way to force the traffic to the firewall, I can just send my packets straight to the system I want using it's MAC address and not its IP address. |
Thanks Chillyjim,
However, i AM forcing traffic to the firewall because I have a static route on the core that says send all networks to the FW. The FW has an interface to my private network, and thus I can regulate or protect my internal network from vendors. I am trying to avoid using a new interface on the FW for each vendor. That is where I am confused...