Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
574
Views
15
Helpful
9
Replies

Design Recommendation

Aaron_un
Level 1
Level 1

‎09-10-2022 01:29 AM - edited ‎09-10-2022 02:21 AM

To briefly describe this company has this main product, drones, who is revolving around in testing, management and mass produce 

TypeSpecification
HQ/Branches* 200 sites, different sizes between 10 to
1500 Employees
Drone Landing/Staging Ports800 sites
LABS30 sites, hardware close development
Test Benches30 sites, custom IT set-ups
Production Sites15 sites, custom IT set-ups

*Scenario: We will have multiple IoT Devices, 3 Devices per Employee, yet a bit unclear

1. How would you architect and template the network?

2. How specific would you create the production network?

FYI It's asking for a very modern approach.

 

Ok so far I came up with this very high level Architecture,

  • Aside from a primary On-Prem location, HQ will be having an extra backup site for incident recovery deployed in the cloud connected with ACI multisite orchestrator, also cross-connected to all branches over L3OUT via SDWAN technology
  • Using Cisco Firepower 41xx for the N/S E/W Traffic in HQ and FTDv in the HQ backup site, Also Cisco Secure Endpoint security and SecureX for End User Control/Policing
  • Using ACI also for the rest of those sites

I don't know how different those other environments(i.e. Landing/Staging Ports, Labs, Test benches, production) should be connected/designed? specifically production..

these are all I know about this project requirements and that's the catch!, please guess work the design as much possible...

Thanks Folks

Labels:
0 Helpful
9 Replies 9

Kasun Bandara
VIP
VIP

‎09-10-2022 03:07 AM

is this real scenario or assignment?

Please rate this and mark as solution/answer, if this resolved your issue
Good luck
KB

Aaron_un
Level 1
Level 1
In response to Kasun Bandara

‎09-10-2022 07:18 AM

No a real one...

0 Helpful

Leo Laohoo
Hall of Fame
Hall of Fame

‎09-10-2022 04:10 AM

  1. If you want this done right, get a reputable systems integrator involved. 
  2. If you want to "learn", do number 1.  

Georg Pauwen
VIP
VIP

‎09-10-2022 04:34 AM

Hello,

highly interesting and challenging project ! Based on the information you have provided, you are dealing with about 1100 sites. Which would suggest some sort of DMVPN approach. Does this company already have an existing infrastructure in place ?

Aaron_un
Level 1
Level 1
In response to Georg Pauwen

‎09-10-2022 07:20 AM

well for the sake of simplicity, let's just say this going to be a greenfield....

0 Helpful

Leo Laohoo
Hall of Fame
Hall of Fame
In response to Aaron_un

‎09-10-2022 05:35 PM

What is the budget for this work?

0 Helpful

Aaron_un
Level 1
Level 1
In response to Leo Laohoo

‎09-10-2022 10:05 PM

infinite...

0 Helpful

Leo Laohoo
Hall of Fame
Hall of Fame
In response to Aaron_un

‎09-10-2022 11:24 PM - edited ‎09-10-2022 11:25 PM

@Aaron_un wrote:
infinite...

Infinite budget but cannot pay for a reputable systems integrator?

HAHAHAHAHA ... Busted -- This is homework!

0 Helpful

Georg Pauwen
VIP
VIP
In response to Aaron_un

‎09-11-2022 12:30 AM

Hello,

you have plenty of options: for the HQ and larger branch sites, you could use ASR-100x routers (there are numerous models). For all other sites, keeping the DMVPN in mind, you could use e.g. the ISR 921 routers. That would be the routers only, you need switches as well.

There is a tool on the Cisco website that lets you select routers based on business requirements:

https://www.cisco.com/c/en/us/products/routers/router-selector.html?oid=caten020272

0 Helpful
Customers Also Viewed These Support Documents