VLANS

Answered Question
Feb 1st, 2008

We currently have 40 employees on one network. We have purchased layer 3 and layer 2 switches. Is it best to break up the network into subnets based on the department that they work, or the applications/software that they access through the servers? ie If an executive uses an accounting software installed on a server, is he placed in the Executive VLAN or Accounting VLAN? The executive staff will be placed in same location..department employees will be placed together.

I have this problem too.
0 votes
Correct Answer by rakmenon about 8 years 10 months ago

You must pretty much seggregate based on the traffic pattern (application specific) that the users have rather than which department they work in.

2 people in the same department but in different vlans can always share stuff on the network as u have a layer 3 switch for intervlan comm.

Do not consider vlans as a method to stop communication between 2 groups (unless you use VACLs). Its just there to control broadcasts and make troubleshooting easier.

Focus on traffic requirments than Departments.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
dongdongliu Fri, 02/01/2008 - 01:18

maybe you can use L2 SW to manage vlan and using L3 SW control vlan access.

Correct Answer
rakmenon Fri, 02/01/2008 - 01:40

You must pretty much seggregate based on the traffic pattern (application specific) that the users have rather than which department they work in.

2 people in the same department but in different vlans can always share stuff on the network as u have a layer 3 switch for intervlan comm.

Do not consider vlans as a method to stop communication between 2 groups (unless you use VACLs). Its just there to control broadcasts and make troubleshooting easier.

Focus on traffic requirments than Departments.

Actions

This Discussion