Catalyst 9200L or Better (Upgrading Dell Network to Cisco)

CCSOSupport · ‎03-05-2024

Good day, I am the Network Engineer for a Sheriff's Office, have only been on-site for 3 months as of now. Lots-To-Do, Currently using Watchguard Firewalls, Dell N2048 stacked switches for core and Netgear and other single N2048's for IDF Closets.

I am looking to upgrade and roll Cisco throughout the infrastructure. We have 3 branch locations no HSRP, one Point-To-Point, of the 3 branches, one is the jail with over 100 IP Cameras. I am bringing AT&T ASE 10GB into the mix and thinking of running Catalyst 9200L stacked for our core at both locations with 10GE SFP+ LR LC Modules to handle traffic and camera throughput for 4K streaming 24x7.

So my question, is the 9200L sufficient to run a true 10GB network if all my MDF and IDF are setup with 10GE SMF from the DMARC to Core stack and out to each IDF, understanding the end user device will matter however from the switching POV. Also, 75 IP Phones, 150 computers, 250 users, VPN users, Remote Desktop Users, 16 servers, and 120 NetGear AP's.

Or for this network would going with the 9300 be better for security with MacSec-256 capability where the 9200L does not support? (from my understanding)

My plan was to use the 9200L as the sole platform housed, meaning we would have around 24 9200L for all locations allowing for hot spares and backups if needed. or should i mix a 9300 or 9600 for the core and drop 9200L for all IDF and branches?

Lastly, EOL, I assume the 9200 EOL will be released within the next 2 years further giving me up to 7 years of operation before being deprecated correct? So in theory i should be able to operate into 2030-2032 before needing to do this again?

TIA, Greatly appreciate the Cisco family.

Reza Sharifi · ‎03-05-2024

If you are planning to redo the core switches and have the funding for it, I recommend using the 9600 series. See the link below. The 9200/9300 switches are designed to be used as access layer switches and not so much for the core.

https://www.cisco.com/c/en/us/products/collateral/switches/catalyst-9600-series-switches/nb-06-cat9600-series-data-sheet-cte-en.html

HTH

Leo Laohoo · ‎03-06-2024

@CCSOSupport wrote:
allowing for hot spares

Every Catalyst 9200 come with Enhanced Limited Lifetime Hardware Warranty included in the price.

Also read: Cisco Catalyst IOS Software Update Program for Cisco Catalyst 9200/X, 9300/X, 9400/X, 9500/X and 9600/X Series Switches

CCSOSupport · ‎03-07-2024

So, my original plan was 9600 for the core, however with cost associated, I was thinking 9200L stacked behind a FortiGate 200F. The 9600 I feel with our setup may be overkill and in turn hard to justify cost to a budget board. I mean I personally would like to be fancy but my wishlist would never be aligned with a county budget. So my hands are slightly tied, however if the 9200L will get the job done in the same manner and provide the same level of efficiency and control that would be needed then that is more ideal to the situation. This is my first modern network, in otherwords I have only been around 2960's and 1800 series routers. So from my research and other discussions I was led to the 9200L, however after further research for security the 9300 is now more the direction. Or do I just bite the bullet and figure justification for the 9600's?

Thanks again for the assist and ideas.

Leo Laohoo · ‎03-07-2024

@CCSOSupport wrote:
The 9600 I feel with our setup may be overkill and in turn hard to justify cost to a budget board.

Do the maths. Bandwidth-wise, 9600 is a lot cheaper than a 9400.