Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
698
Views
0
Helpful
3
Replies

Adding Layer 3 to network and setting up Vlans and ACL

Lost
Level 1
Level 1

‎01-04-2019 05:41 PM - edited ‎03-08-2019 04:57 PM

Hello All,

 I am looking at getting at setting up my home network. The current plan is to:

Set up Vlan 1, 10, and 20.

    1 for ISP router as well as IPTVs (Which require to me on vlan 1)

    10 for standard home network. Gaming PCs, wifi AP, NAS, etc

    20 for home automation.

Setup ACL:

    Vlan 1 <-> Vlan 10

    Vlan 10 <-> Vlan 20

   but Vlan 1 and 20 cannot communicate

 

ISP router will handle DHCP for vlan 1 and would be connected to vlan 1 port on a SG200-28 that I already own. Connected to the SG200 further down stream would be a L3 switch. The L2 and L3 would be trunked together via a crossover cable. The L3 would be responsible for handling the ACLs as well as doing DHCP for Vlan 10 and 20 (as well as any other vlans that I might create in the future.) I've attached a rough diagram of the home network.(Not every device is shown but it gives you the idea) And yes, I know that I used Packet Tracer wrong, I was just using it for the pretty pictures.

Things to know about my network uses:

1. I do not nor do I plan to have any ports opened on the router.

2. The ISP speeds are not great and over all network demand is low. The max network usage is either files streaming from the NAS or files being added to or copied from the NAS.

3. Its a home network and for the most part it is used as such.

 

My question:

1. I was planning on getting a SG350-10 for the L3, would this work for what I want? I didn't see a need to go to the 550.

2. Will my over all plan work? Is there a better way of doing it that makes sense? I cannot use an after market router, I must use the ISP one and there are no other ISPs available. I find it weird to have the 350 at the end but due to the layout of the house, it makes the most sense.

 

Thank you for your time and suggestions, please let me know if there is anything else you need to know.

~Lost

 

Labels:
tracer.png
Preview file
57 KB
0 Helpful
3 Replies 3

luis_cordova
VIP Alumni
VIP Alumni

‎01-04-2019 06:45 PM

Bien @Lost,

 

I recommend changing the location of the switches.

I would prefer to have the L3 closer to the border.

 

Regards

0 Helpful

Lost
Level 1
Level 1
In response to luis_cordova

‎01-04-2019 07:22 PM

Luis,

   Thank you for your reply. I agree with you that I think its weird but the reason I have it there is that the ISP box is on the second floor of my house where the rack and the SG200 is. The first floor has a 8port switch connected to the SG200.  Because the first floor will need to have a switch that can do vlans I figured I might as well put it there instead of putting the L3 on the second floor where I have more than enough ports and having to buy a second L2 switch for downstairs. Does that sound reasonable or should I still move it?

Also, is there any other suggestions you might have or any other opinions?

Do you know if the 350-10 would do what I need or do I need to move to the 550?

 

Thanks,

Lost

0 Helpful

Lost
Level 1
Level 1

‎01-05-2019 05:47 PM

Can anyone please give me their opinion or suggestions? I really need help and will provide whatever info you might need. Thanks

0 Helpful
Customers Also Viewed These Support Documents
Top