config suggestions

Unanswered Question
Feb 28th, 2010

Looking for suggestions.. Doing std routing now, but can see potential issues in the future.

LANa ----> routerA ----> CoreRouterA ----> routerB ----> LANb

LANc ----> routerC ----> CoreRouterA ----> routerD ----> LANd

Hosts on LANa and LANb can talk to each other and hostA off FA0 on CoreRouterA

Hosts on LANc and LANd can talk to each other and hostA off FA0 on CoreRouterA

LANa and b should not see LANc and d traffic and LANc and d should not see a and b traffic.

Works fine today as routed network, but now new LANe has same subnet as LANa.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Giuseppe Larosa Thu, 03/04/2010 - 05:45

Hello Kgreener,

>> but now new LANe has same subnet as LANa.

this is something  to be avoided by any means

for all of your other requirements the use of appropriate ACLs provide the desired connectivity regarless of use of static or dynamic routing.

if you have many subset of subnets that require closed connectivity, you could think of implementing VRF lite or MPLS VPN but that would be a very big change from your current network

Hope to help

Giuseppe

Actions

This Discussion