I have 1000 nodes for which i am planning a Campus wide network , with 1 Layer three switch, some 15 L2 switches . I have some 20 different departments and need different ip schemes for all of them. I need this with security enabled so that the departments resources are safe. Please do suggest me how can i go for it . . .
Do suggest what IP scheme i can allot , if one dept is having 60 users and another is having 490 users .
i do aggree with Giuseppe, because most of the time, companies might setup servers/system at several places. either full switch setup, with one core switch, or multi smaller routers as each department gateway and one big core router/core switch for main routing&switching.
my suggestion is to get a cisco vendor which can tailor made your company needs. you only need to prepare your requirement list, and company pays for it. less headache...
There are three ways to complete a project: cheap, right and fast. CHOOSE TWO.
Firstly, you need someone to verify your network architecture. From the sound of your description, you're first biggest hurdle would be to get 20 different heads together and talk about what they have, what they want, and what your project will achieve.
You'll undoubtedly come across a number of department saying that they have a home-grown 286 machine that may require a 10Gb link (ha ha ha!).
Next, your budget. How much (laughable) it will be, you then need to choose the appropriate appliance: switches, routers, Firewalls, etc.
Divide your physical subnets such that there are none larger than /25 or /24, allocate those subnets, for each department, out of its own /20 address block. Assign unique VLAN to each physical subnet.
You might also want to split dept. user subnets from dept. server subnets and common resource subnets.
With a L3 switch for routing, no real need to worry about placing logically related hosts in the same VLAN. Allocating physical subnets out of a dept. address block, will ease defined ACLs, if needed, between logical groups (i.e. depts.).
So, for your dept. with 60 users vs. 490 users, both would be defined from their own /20 block for ACL purposes, but the 60 users would be in one /25 or /24 subnet and VLAN while the 490 would use several.
Question We run asr9001 with XR 6.1.3, and we have a very long delay to
login w/ SSH 1 or 2 to the device compare to IOS device. After
investigation, the there is 1s delay between the client KEXDH_INIT and
the server (XR) KEXDH_REPLY. After debug ssh serv...
Introduction The purpose of this document is to demonstrate the Open
Shortest Path First (OSPF) behavior when the V-bit (Virtual-link bit) is
present in a non-backbone area. The V-bit is signaled in Type-1 LSA only
if the router is the endpoint of one or ...
Hi, I am seeing quite a few issues with patch install and wanted to
share my experience and workaround to this. Login to admin via CLI, then
access root with the “shell” command Issue “df –h” and you’ll probably
see the following directory full or nearly ...