Hi all, I would like collect opinions about mix Internal LAN ports and public DMZ ports in a same switch using VLANs. I mean, configure i.e. 1 to 12 port in one VLAN and the rest in another, and then connect the first VLAN to a the internal net (one of the firewall interfaces) and the other VLAN to the DMZ net (another interface of the firewall).

Am I then trusting too much in the VLAN security? Or it doesn't matter because is not in network layer and is not exploitable?

Any though?

Thank you!