i am fairly new to cisco but i think im now in a position where im ready to make a network. I am required to setup the following:
1. Office Network
2. Web Network
Both networks must be on separate IP ranges, i want my office network to be able to talk to my Web network but my Web network should not be able to talk to my Office network.
I will set it up so that people externally can access the web network.
We currently have no Cisco equipment in my work place but and i intend to purchase a Cisco switch and segment that into VLANS and a cisco router so that i can manage what traffic gets through to my WEB network. Does this sound feasible?
Yes. That is how you can do it. You set up two VLANs with two IP subnets. On the router you filter traffic between the office and web network. You could use the CBAC firewall or zone-based firewall depending on the router and IOS version.
If you have a public subnet available you can use this for the web network. If you have to use private IP addresses you set up NAT and static PAT for the access to the web network from the internet.
You do not even need a VLAN switch for this purpose. A single VLAN router could be enough. You can run each VLAN from different ports on the router. Of course, then you always have to check where you connect a device to make sure it goes into the correct VLAN so a VLAN switch make come handy.
Look for "DMZ" in both. The second page is very long. See the "Ethernet Interface Configuration Example" for a start. CBAC has a lot of configuration options but that example shows the basic setup which is fairly easy and simple to understand.
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...
I am going to design and build an LAN network under a tunnel underground with long distance between the switches.
I will have 2 Catalyst switches and 8 Industrial IE3000, and they will be connected with fiber.
For now I am planning on use Layer-2 s...