I look after a small network of around 100 workstations, 35 printers, 70 servers.
My design is such. I use Cisco 2960G's and 3560G's at my access layer. To route between the VLANs I use the 3560G's. I then use an alternative provider for my firewall (DMZ, etc).
At the core of my network is a stack of 3750G's (x4) that my servers are plugged into. I also have my access layer switches connected to the core through portchannels.
My VLANS are as such:
VLAN1: native (this needs to be changed and will be in weeks to come), and also houses some servers and workstations
VLAN8: new server VLAN
VLAN20: new workstation VLAN
VLAN21: printer VLAN
VLAN40: UNIX vlan
VLAN70: management VLAN
VLAN100: voice VLAN (no VOIP solution in place).
The core switch (SW001) is configured as the root bridge for all of my VLANs. I want to optimise the forwarding path for all VLANs and ensure that I am not causing any issues at L2 with the configuration I currently have in place. I have nominated a secondary root in the design. The two L3 switches that do the routing use HSRP. I have removed those VLANs not in use from the trunk links.
My question is, would anybody advise me to do things differently with regards to the root bridge for the VLANs? The utilisation of the switches is very low, as is the throughput of the port channels. The network is over spec for what is required, but when it was put in it was designned for future growth.
There are, I know, issues with the design, that we are addressing. At this stage I just want to ensure that the L2 configuration is optimal.