I got three seperate networks 192.168.10.0/24, 192.168.11.0/24, 192.168.12.0/24,
I want to use a designated bridge to separate different networks on a MikroTik router CCR2004-1G-12S+2XS. The bridge will act as a virtual switch to link each seperat network with a gateway interface which is in my case the fortigate.
i need to know if this method is a best practice and shall i rely on in the future or should i go with vlans ?
thanks to anyone who will dedicate a little time to me, and have some advices about this matter.
We need to know a bit more on the context, a network diagram perhaps ?
Simple drawing on paper can be enough.
General advice:
1 bridge on your router, unless you have a real good reason to have multiple which for most, myself included, means if you do not exactly know why you want to split, keep it with one bridge.
If your different subnets all terminate on a different ether port, you can do without vlans.
But you mention Fortigate. Only 1 or 3 different ?
I have a network architecture where three separate buildings, denoted as Bridge1, Bridge2, and Bridge3, are directly connected in a star topology to an administration building (Admin_Bridge).
All the switches within these buildings are linked to a central MikroTik CCR2004-1G-12S+2XS router.
Despite the physical separation of these buildings, I intend to use bridge configurations as virtual switches.
The goal is to segregate each building’s network through these bridges, creating a logical separation. This approach allows me to connect each distinct network to a dedicated interface on my gateway device (Fortigate).
Concur, one bridge and three vlans is all that is required here.
Unless the fortigate cannot handle vlans?
What is the purpose of the fortigate in this setup? Edge Router with some subscription services??