I hvae an AS that comprises of 16 x /24s.
This peering is being done on a 3640.
Currently i'm only advertising/peering 8 of theses 16 like so:
encapsulation dot1Q 230
ip address 188.8.131.52 255.255.255.0 secondary
ip address 184.108.40.206 255.255.255.0 secondary
ip address 220.127.116.11 255.255.255.0 secondary
ip address 18.104.22.168 255.255.255.0 secondary
ip address 22.214.171.124 255.255.255.0 secondary
ip address 126.96.36.199 255.255.255.0 secondary
ip address 188.8.131.52 255.255.255.0 secondary
ip address 184.108.40.206 255.255.255.0
Is it good practice to do 3 vlans sub-interfaces on the FastEthernet, like for instance:
I need to bring in 5 more, but I'm thinking of changing this setup now.
My 3640 is connected to a 6500 as a trunk port and the firewall is on the 6500 with a trunk port also.
Could I do 3 netblocks each with it's own vlan and sub-interface on the 3640, trunk that to the 6500 and back to the firewall? The firewall is a fortigate and actualy supports up to 256 sub interfaces.
How many sub interfaces are you allowed to put on a 3640 Fastethernet?
Im thinking of this setup:
(This would be vlan 224 with Firewall Sub-Interface as 220.127.116.11/21)
encapsulation dot1Q 224
ip address 18.104.22.168 255.255.248.0
(This would be vlan 232 with Firewall Sub-Interface as 22.214.171.124/22)
encapsulation dot1Q 232
ip address 126.96.36.199 255.255.252.0
(This would be vlan 236 with Firewall Sub-Interface as 188.8.131.52/22)
encapsulation dot1Q 236
ip address 184.108.40.206 255.255.252.0