VLANS

Answered Question
Feb 1st, 2008
User Badges:

We currently have 40 employees on one network. We have purchased layer 3 and layer 2 switches. Is it best to break up the network into subnets based on the department that they work, or the applications/software that they access through the servers? ie If an executive uses an accounting software installed on a server, is he placed in the Executive VLAN or Accounting VLAN? The executive staff will be placed in same location..department employees will be placed together.

Correct Answer by rakmenon about 9 years 2 months ago

You must pretty much seggregate based on the traffic pattern (application specific) that the users have rather than which department they work in.


2 people in the same department but in different vlans can always share stuff on the network as u have a layer 3 switch for intervlan comm.


Do not consider vlans as a method to stop communication between 2 groups (unless you use VACLs). Its just there to control broadcasts and make troubleshooting easier.


Focus on traffic requirments than Departments.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
dongdongliu Fri, 02/01/2008 - 01:18
User Badges:

maybe you can use L2 SW to manage vlan and using L3 SW control vlan access.

Correct Answer
rakmenon Fri, 02/01/2008 - 01:40
User Badges:
  • Cisco Employee,

You must pretty much seggregate based on the traffic pattern (application specific) that the users have rather than which department they work in.


2 people in the same department but in different vlans can always share stuff on the network as u have a layer 3 switch for intervlan comm.


Do not consider vlans as a method to stop communication between 2 groups (unless you use VACLs). Its just there to control broadcasts and make troubleshooting easier.


Focus on traffic requirments than Departments.

Actions

This Discussion