I have L2 switches Cat 2950, Cisco Fast Switch 400, 3com3C 16476, 3com 4250T with 3 subnets 172.17.8.0/16, 172.17.9.0/16, 172.17.10.0/16 having default gateway as 172.17.8.1(Internet router) in all the client pc`s.
Now I would like to separate these segments with 3 VLAN`s into:
172.17.8.0/24 with DG 172.17.8.1, 172.17.9.0/24 with DG 172.17.9.1, 172.17.10.0/24 with DG 172.17.10.1
by setting up Cisco L3 switch, with less downtime.
I know that the changing of DG and mask in clients will take time.
I have created secondary network for 9 and 10 with its DG as 9.1 and 10.1.
All the clients in 9 and 10 DG have been changed to 9.1 and 10.1 with mask /16.
On one weekend Ill setup the L3 switch with 3 VLAN and allow the routing between the segments.
L3 switch DG will be 172.17.8.254(Internet router). Next working day the clients will change the mask to /24.
Each segment clients will access the servers of other segment. Will there be any problem in accessing between different segments as each segments has got file server and print server and some other servers?
Now the main part is, which Cisco L3 switch will suit for my network, which is having more than 600 users/devices? And what all things should be taken care of when configuring L3 switch?
The main thing to be taken into consideration is the MSFC support in the configurations and the IOS releases.
Data-plane (security) Access Control Lists (ACLs) (in other words, user data traffic cannot be restricted using input or output access lists on the router interfaces) -- Data-plane ACLs are now supported in release.
Bridging on 802.1q subinterfaces (that is, a subinterface with both "encapsulation dot1q" and "bridge-group n commands applied) -- bridging on InterSwitch Link (ISL) subinterfaces is supported .
AppleTalk routing .
Port snooping (also known as SPAN, port mirroring, promiscuous mode) .
This document gives several answers on frequently asked questions for PFRv3 channel state behavior.
Q1: What are all the channel operational states from a BR (border role) perspective and what are the rules/conditions to be in each st...
The need was to reach an host inside a LAN through a VPN connection managed by the LAN gateway (Cisco 1921).
The LAN gateway performs NAT and there was a dedicate nat rule for the host i wanted to reach through VPN.
I couldn't connect to the hos...