config suggestions

Unanswered Question
Feb 28th, 2010
User Badges:

Looking for suggestions.. Doing std routing now, but can see potential issues in the future.


LANa ----> routerA ----> CoreRouterA ----> routerB ----> LANb

LANc ----> routerC ----> CoreRouterA ----> routerD ----> LANd


Hosts on LANa and LANb can talk to each other and hostA off FA0 on CoreRouterA

Hosts on LANc and LANd can talk to each other and hostA off FA0 on CoreRouterA


LANa and b should not see LANc and d traffic and LANc and d should not see a and b traffic.


Works fine today as routed network, but now new LANe has same subnet as LANa.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Giuseppe Larosa Thu, 03/04/2010 - 05:45
User Badges:
  • Super Silver, 17500 points or more
  • Hall of Fame,

    Founding Member

Hello Kgreener,


>> but now new LANe has same subnet as LANa.


this is something  to be avoided by any means


for all of your other requirements the use of appropriate ACLs provide the desired connectivity regarless of use of static or dynamic routing.


if you have many subset of subnets that require closed connectivity, you could think of implementing VRF lite or MPLS VPN but that would be a very big change from your current network


Hope to help

Giuseppe

Actions

This Discussion