Question, trying to understand. Scenario. Have one isp with 22.214.171.124/30 network isp router to our main site router. Need another block of public addresses from ISP to assign to tenants on different floors, let’s say that block is 126.96.36.199/27. The tenants NEED static addresses. This is hypothetical situation I am trying to understand. See attachment for network map.
So, two questions here:
How does the isp get you that second block of addresses? Do they just create a sub interface on their router for additional block? I mean I know you can create sub networks on the interfaces but that would not allow you to subnet out the second ip block to be used for the tenants, correct? I know you could add a layer 2 device between isp and main site router and directly plug in tenants there, but let’s assume there isn’t a layer 2 device. I just want to know what the configs would need to be on the main site router and the isp router to allow that second network to be used for the tenants.
If subnetting the 188.8.131.52/27 to /29 I created 4 subnets, where they can be used for the four tenants listed below. I would assume that I need VLANS in order to prevent one tenant from assigning an ip from another tenants subnet?
1. I'm an ISP, I have single connection with customer. Customer needs more IP addresses. I just create a static: "ip route 184.108.40.206 255.255.255.224 <you side of p2p>" I probably already have a redistribution policy for statics, I just add that into my prefix list and its goes up. You your main site router, you just need to add routing toward your tenant's next hops. Otherwise, if you use BGP, then you announce this new prefix like any other prefix...and insure you have routing toward your tenant's devices.
2. Yes. You need 4 VLANs if you need segmentation between tenants. What happens when your tenants need more IP addresses? If your ISP gives you IP space, then they do the static routing as outlined in 1. You then add a secondary IP address on your main site router's interface facing the tenants--the tenants deal with further routing. If you get your own IP space, then same thing applies, except with a BGP configuration as outlined in 1.
Hi all,I´d like to get a better understanding of 802.1X and therefore I`d like to know if it`s a common scenario to use 802.1X to authenticate an Access-Point (probably in a deployment where the AP can be physically accessed by guests or so...) and afterw...
Cisco Digital Network Architecture Center Tools <Template Editor > In this article, we are going to talk about the Cisco Digital Network Architecture Center Template Editor tool.Cisco DNA Center gives us the flexibility and scalability to confi...
Community Live- Cisco SD-WAN Policies: Leveraging the Full Power of Cisco SD-WAN
(Live event - formerly known as Webcast- Tuesday 24 March, 2020 at 10 am Pacific/ 1 pm Eastern / 6 pm Paris)
This event had place on Tuesday 24th, March 2020 at 10hrs P...
IS there a way to upgrade the ios on a cisco 9200l switch using a usb drive instead of using a tftp server? If so could someone point me to the article or tell me how this can be done? These switches seem to be more complicated than previous switches. Tha...
Hello,I'm needing to integrate the Cisco Firepower 2110 into our Data Center JUST to fulfill Site-to-Site and Remote Access VPN. My SD-WAN ISRs already have FW and IPS running, which is what I want since I have internet breakouts at my branches, so this D...