I have a set of 3 cisco 1900s switches all uplinked to cisco 2900XL which is uplinked to a router, and then the internet...all works great all the time.. i just have everyone plugged into the 1900s on the same 192.168.5.0/24 network via DHCP addresses.
I want to isolate all broadcast traffic to each port (idealy) or to each switch (if more reliable). I'm trying to keep people on the same switch from espesically non IP intra switch communications.
I was thinking per port VLANs or per switch VLANs...or if more, smaller subnets for just IP traffic.. but im not really sure.
Yeah.. you need to create VLANs to reduce the broadcast domain on your network.. Ideally, you can define VLANs, based on the department, floors , switch etc... for eg:
VLAN 10 - admin
VLAN 11 - finance
VLAN 12 - Production
VLAN 20 - Testing
VLAN 30 - Server VLAN
Once you define these parameters, you need to allocate different subnets for each of these VLAN. You can configure dot1q or ISL trunking between the switches to carry all the VLAN information across switches.
All these are fine, but the main thing you will be missing is a layer 3 switch.. for all communication between VLANs, you will require a layer 3 component.. routers can be used for this, but i would suggest a layer 3 switch, throug which u will have more control.. without layer 3 switch, it not advicible to go to a VLAN based network...
Hope this helps.. all the best.. rate replies if found useful..
1) would i only need one layer3 swtich to interconnect the 5 x cat1900s? then uplink the non vlan tag router into that?
Ans - One L3 will be a minimum requirement. if you want high availability, then you can go for 2, just to configure it as Active/standby types.. what is the uplink u want to use from cat 1900 ?? copper or fiber ? normally most of the low end L3 switches come with 4 port fiber uplink modules. If u need more than 4, we might need to look at a slightly higher option !!!
2) Ans - are the 100 ports in the same floor ? 100 PCs in a VLAN is fine, unless the customer wants security and scalability in future.. you can put them on different VLANs only if required... There will be only IP protocol traffic flowing thro the switch. Are there any other protocols on your network ??
Question We run asr9001 with XR 6.1.3, and we have a very long delay to
login w/ SSH 1 or 2 to the device compare to IOS device. After
investigation, the there is 1s delay between the client KEXDH_INIT and
the server (XR) KEXDH_REPLY. After debug ssh serv...
Introduction The purpose of this document is to demonstrate the Open
Shortest Path First (OSPF) behavior when the V-bit (Virtual-link bit) is
present in a non-backbone area. The V-bit is signaled in Type-1 LSA only
if the router is the endpoint of one or ...
Hi, I am seeing quite a few issues with patch install and wanted to
share my experience and workaround to this. Login to admin via CLI, then
access root with the “shell” command Issue “df –h” and you’ll probably
see the following directory full or nearly ...