My name is Alex, an I am sort of a Cisco newbie...
This is the situation I am facing: a campus lan of around 2500 ports, distributed in 8 separate buildings.
The network infrastructure is as follows:
a. Cisco 2821 Adv Sec Bundle Router
b. Cisco 3750G switch (3 units stacked together)
a. Cisco 3560G switch
a. Lot's of Cisco 2960 switches
All the access level switches are connected to the distribution switch via gigabit ether channels (2 x 1GB link). All the distribution switches are connected to the core using fiber-optics ether channel (2 x 1GB FO link). The router is connected to the main switch.
Please give me any ideas about how to configure these machines in order to achieve:
- A different V-Lan for each building, with a different class of IP addresses (i am now using 10.x.0.0/255.255.252.0 where x is the building number)
- DHCP server on each of the 3560G switches
- All the traffic from one building to another be routed using only switches
- All the Internet traffic be routed using the 2821 core router
Sorry about my bad english and if my problems are too simple for you.
Re: Campus LAN with 2500 ports - Configuration issues
When using Etherchannel between your 3750G stack and other devices, try to have links connected to different individual 3750Gs (to avoid single point of failures).
It's also possible to configure the two 2821 ports in a cross stack Etherchannel with the 3750G stack.
Use HSRP for gateways within the 3750G stack; this avoids gateway MAC change if master fails.
If you are going to only have one subnet/VLAN per building, there's no real advantage to route in the building assuming the distribution is only connected to the 3750G stack.
It is a good idea to be able to reserve one address block for each building (which you may already have done).
If there are over a hundred hosts in a building, probably worthwhile placing them into separate subnets (this would also be a reason to use the building's 3560G as a router). All the building subnets should be within the building's address block.
When using Etherchannel between routers, insure the channel hash algorithm isn't using just MACs.
Suggest using a routing protocol between routers. What's available on the 3650/3750 is dependent on the feature set. If only base level, you're topology is small enough RIP should be alright.
Have the 2821 router advertise a default route to your network. Have its default route go to the Internet.
You might look into using VTP to manage VLANs within a building.
If possible, you might consider replacing your distribution 3560Gs with dual stacks of 3750Gs. This too so your Etherchannels (connections across stack members) from the access 2960s to distribution avoid a single point of failure for the building.
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...
I am going to design and build an LAN network under a tunnel underground with long distance between the switches.
I will have 2 Catalyst switches and 8 Industrial IE3000, and they will be connected with fiber.
For now I am planning on use Layer-2 s...