Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
315
Views
0
Helpful
2
Replies

Question on collapsing design

jim_s2013
Level 1
Level 1

‎07-05-2013 07:45 AM - edited ‎03-04-2019 08:23 PM

With layer 3 switches now running in the Tbps speed, 10Gb ports,  and supporting BGP.   Is it okay to collpase all layers including WAN into a pair of these switches for a small data center-wan/core/aggregation/access.  

The WAN would sit on its own VLAN and the outside interfaces of the firewalls would be on access ports on that  VLAN.  The inside ports of the firewalls would connect to an internal  VLAN.  Physically the internet fibers would connect directly into the switches.

Everything is still redundant and split across the switches with no signle point of failure.  There would be no access into the switches from the outside world aside from maybe ping.

Thoughts?

Thanks,

Jim

Labels:
0 Helpful
2 Replies 2

Joseph W. Doherty
Hall of Fame
Hall of Fame

‎07-05-2013 10:04 AM

Disclaimer

The  Author of this posting offers the information contained within this  posting without consideration and with the reader's understanding that  there's no implied or expressed suitability or fitness for any purpose.  Information provided is for informational purposes only and should not  be construed as rendering professional advice of any kind. Usage of this  posting's information is solely at reader's own risk.

Liability Disclaimer

In  no event shall Author be liable for any damages whatsoever (including,  without limitation, damages for loss of use, data or profit) arising out  of the use or inability to use the posting's information even if Author  has been advised of the possibility of such damage.

Posting

If there are no "network issues", you often only need additional devices when you run of ports.

If you want to allow for some "network issues" limiting their impact, you can use additional devices for that purpose.

The two layer or three layer designs are good practices when you need to scale your network when you must use additional devices.

0 Helpful

jim_s2013
Level 1
Level 1
In response to Joseph W. Doherty

‎07-05-2013 11:00 AM

Thanks for the response Joseph.

I've actually seen this design in the past running just fine also with 4900 series switches doing WAN routing running BGP with a default route and also taking care of internal VLANS for servers. It made me do a double take when seeing the internet connections going directly into the same switches and thats most people's response. I was acutally responsible for doing some outside pen testing on the switches and they came up clean.

Jim

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card