Can I use a switch and a firewall both at layer 2 of the network setup instead of chaining them?

By chaining i mean T1 router%26gt;Firewall%26gt;Switch%26gt;others





I want to be able to have the t1 router and firewall connect directly to the switch but I really don't know how to come about getting the clients to request everything through the firewall and then make the firewall hop to the t1 router.Can I use a switch and a firewall both at layer 2 of the network setup instead of chaining them?
This will only really work if you are using a layer 3 switch and you'll still need to have two network cards in your firewall.





Typically, firewalls will have a clean and dirty interface, so you'd VLAN off your switch to be dirty and clean. The firewall could then connect to both sides.





Users would have default gateway of the switch's private IP address. Traffic would then be forwarded onto the firewall, which would apply its rule set and forward on the dirty switch VLAN and then onto the router.Can I use a switch and a firewall both at layer 2 of the network setup instead of chaining them?
T1 router%26gt;Firewall%26gt;Switch%26gt;others is the only correct configuration.





Why would you possibly want to do it any other way??