Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
771
Views
10
Helpful
4
Replies

NETWORK / SWITCH RECONFIGURATION

Go to solution
pdenableetoavit19698
Spotlight
Spotlight

‎02-13-2023 06:34 PM

Hi all!

I am planning to totally restart from scratch the configuration of this network, switch/kerio-dhcp/vlans etc.

A draft map of current setup is attached.

The idea is to start from clean sheet to reduce all possible issues/configurations problems etc. So will reset the devices after backing up and exporting all config info available.

For the Vlans, at what level would you rather set them up? - at the dhcp controller/firewall (Kerio Control) or at the Switch level?

Planning also a different Vlan setup (currently 3, one for all the network, one for guests and one for staff). Planning instead of having a few more to better differentiate and isolate the different areas. 1 for most networking, 1 for AV, 1 for staff, 1 for guest, 1 for pbx.

Is it possible/ideal to put all the AP under a Vlan?

At the moment there is only one Switch, the Cisco Catalyst 2960. was thinking to add the ubiquiti one I have to take the load off the Cisco that is a bit slower. Is it feasible as temp solution while waiting a year or so before getting new Cisco components? Or better to leave the Cisco work alone?

Any other suggestions/tip are welcome! thanks so much!

Labels:
Preview file
83 KB
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame
In response to pdenableetoavit19698

‎02-15-2023 03:18 PM

Sure you need to make plan, one change at a time and keep monitor before move to other improvements, too many changes may have other side effects.

so where you think some vlan not required clean up, make segmentation as you requirement.

even though you have 10.100MB some time that is good enough for a small company, even though you have 300MB internet does not mean every user should require 1GB port.

i would utilise uplink ports to connect firewalls

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

View solution in original post

4 Replies 4

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎02-14-2023 01:01 AM

Not sure why you need another Layer of switch for complexity, also not sure what kind of traffic you have in the network.

If the switch is PoE and have enough power you do not need another switch if you ask me,.

You setup looks good. you need to make a Call, is the Switch looking to Layer 2 or Layer 3 features?

If layer 2 ( all the Layer 3 features move to your Firewall, that should be ok here.)

Cisco 2960 is a good model I used before one of the best models that can do nice throughputs always.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Go to solution
pdenableetoavit19698
Spotlight
Spotlight
In response to balaji.bandi

‎02-14-2023 08:39 PM

Hi @balaji.bandi , thanks for feedback.

Mainly as the current setup has a lot of latency across all level, and many changes on config soft and hardware have been done over time by different people, I wanted to start everything back from scratch on a clean sheet. Might take some time but hopefully will make the difference.

I feel the vlan structure is not enough and too many users are under one vlan with all the broadcasting and related etc issues. Ideally would like to create a few more vlans to better isolate the different group users.

Particularly for AV and PBX.

The Cisco Catalyst only has 10/100 ports but we have a 300/mb internet speed. POE is good enough but processing cpu speed (sorry that is what I meant for power) I feel is a bit slow for the amount of data processing. Therefore I was thinking to leave part of the users on the Cisco and using the current Ubiquiti we have on the side for the faster speed ports where needed. But I agree don't like complexity, rather keep it simpler.

The Cisco is L2 but possible to do Vlans, the Ubiquiti is L3. So I understand both able to handle Vlan configurations. Just wondering what is best normally, Vlan at the DHCP/Kerio/Firewall level or at the Switch level. Generally what options should be left to be handled by the DHCP/Kerio/Firewall and what at the Swtich level?

Thank you

0 Helpful

Go to solution
Georg Pauwen
VIP
VIP
In response to pdenableetoavit19698

‎02-15-2023 12:05 AM

Hello,

how does the latency issue you are dealing with manifest itself ? Rather than rebuilding the entire network with existing devices (which sound like are more or less obsolete?) you might be able to tune your topology in order to improve performance.

0 Helpful

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame
In response to pdenableetoavit19698

‎02-15-2023 03:18 PM

Sure you need to make plan, one change at a time and keep monitor before move to other improvements, too many changes may have other side effects.

so where you think some vlan not required clean up, make segmentation as you requirement.

even though you have 10.100MB some time that is good enough for a small company, even though you have 300MB internet does not mean every user should require 1GB port.

i would utilise uplink ports to connect firewalls

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card