Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
332
Views
0
Helpful
3
Replies

Design Solution is Needed

Go to solution
avilt
Level 3
Level 3

‎05-16-2014 10:47 PM - edited ‎03-03-2019 07:24 AM

I need some assistance on the network design. I have 4 plants each with around 30 HIS workstations. All these 4 plants are connected to a central location using fiber link (1gbps) which are then terminated on a ASA firewall. The issue is that all these 4 plants are in the same vlan/subnet which I see is not a good design. What are the best practices in terms of redesign?

 

One dedicated vlan for each plant, how should I terminate these at the central location?

Also how can I change the fiber uplink to 10gbps?

 

Do I need to have a dedicated management vlan for each plant?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Leo Laohoo
Hall of Fame
Hall of Fame

‎05-17-2014 04:06 AM 

Do I need to have a dedicated management vlan for each plant?

Yes.  

 

Let's say you require three (3) VLANs:  Data, Voice and Guest.   You put a fourth VLAN for Management of your appliance.  You have the option to use different VLANs per site or use the same VLANs.   Your call.  Won't make any difference because you can set VTP Mode to Transparent.  

 

The main point is that you can set each site to have it's own subnet.  

how should I terminate these at the central location?

Hub-and-spoke topology.  Each site advertises it's own subnet via routing protocl like OSPF.  All the site connects to the head office.

Also how can I change the fiber uplink to 10gbps?

You change the fibre optic module from SFP to SFP+.

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Leo Laohoo
Hall of Fame
Hall of Fame

‎05-17-2014 04:06 AM 

Do I need to have a dedicated management vlan for each plant?

Yes.  

 

Let's say you require three (3) VLANs:  Data, Voice and Guest.   You put a fourth VLAN for Management of your appliance.  You have the option to use different VLANs per site or use the same VLANs.   Your call.  Won't make any difference because you can set VTP Mode to Transparent.  

 

The main point is that you can set each site to have it's own subnet.  

how should I terminate these at the central location?

Hub-and-spoke topology.  Each site advertises it's own subnet via routing protocl like OSPF.  All the site connects to the head office.

Also how can I change the fiber uplink to 10gbps?

You change the fibre optic module from SFP to SFP+.

0 Helpful

Go to solution
avilt
Level 3
Level 3
In response to Leo Laohoo

‎05-23-2014 01:17 AM

One clarification on management vlan. I have only one switch in each plant. Is it worth dedicating a management vlan per plant? Is it really must (security reasons) to have a dedicated management vlan? Can I not use the data vlan since all I need is one management IP address for the switch to manage/monitor it.

0 Helpful

Go to solution
Leo Laohoo
Hall of Fame
Hall of Fame
In response to avilt

‎05-23-2014 05:03 AM

You can use existing VLAN if you want.

0 Helpful
Customers Also Viewed These Support Documents