Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
4674
Views
10
Helpful
17
Replies

Core Network Design

Go to solution
anis_cisco
Level 1
Level 1

‎10-26-2013 12:08 AM - edited ‎03-07-2019 04:15 PM

Hello,

We are in stage of designing the core netwokring for one of our customer.

Our customer is a Finance Institute, having two building. Each building has two 6509 core switches. Total we have 4 core switches. Both buildings are connected to each other through Fiber Cable.

We have planned to configure VSS between two core switches of each building & run OSPF area 0 between building to avoid loop.

We have to design Vlan's based on departments, labs & classrooms.

Our issue is, The Institute has single Admin, Management Department for both buildings, how we should design our vlan (for Admin & Managment depart) so that it should be reachable for both buildings & should not have conflict.

Can any one share best practice for vlan design in such type of design, what naming convention we should use ?

Regards,

Labels:
0 Helpful
17 Replies 17

Go to solution
anis_cisco
Level 1
Level 1
In response to Jon Marshall

‎11-14-2013 03:13 PM

Hello Jon,

Following is the current server diagram of the customer that need to customize in the new upgraded network.

Yes, they have one Webserver which is connected into the DMZ of firewall.

Regards,

0 Helpful

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame
In response to anis_cisco

‎11-14-2013 03:28 PM

I'll have a look at this tomorrow as it's getting late here in UK but that is the current config which raises a number of questions -

1) Where in your new design do the internet connections come in ?  Do they come into building 1 and are they across the MPLS cloud or are they not shown.

2) you only show one ASA - are you proposing to have one internet connection connect to the ASA and the other direct to the Teacher ISA server ?

3) If 2) is right how are you proposing to firewall the Teacher internet connection ie. it's not clear whether you intend to use this ISA as both a proxy server and a firewall.

4) If 2) is not right how are you going to terminate the 2 internet connections - on the ASA, on an upstream router from the ASA etc..

It's just not clear how internet connectivity is meant to work from your design diagram.

Also with all the redundancy internally are you proposing only one ASA ?

Jon

0 Helpful

Go to solution
anis_cisco
Level 1
Level 1
In response to Jon Marshall

‎11-14-2013 08:45 PM

Hello,

Actually we have proposed the cisco swithcing solution only to the customer. Servers upgrade, ASA we didnt propose them any thing.

At this moment customer has complete flat network. We need to migrate+upgrade to the new switches. Firewall ASA + ISA severs we dont need to think for these products. Only switches we sold.

1) Where in your new design do the internet connections come in ?  Do  they come into building 1 and are they across the MPLS cloud or are they  not shown.

Both internet connections are in Building 1. Building 1 is the uplink for all other buildings.

2) you only show one ASA - are you proposing to have one internet  connection connect to the ASA and the other direct to the Teacher ISA  server ?

Yes we will use the same. We are not going to propose them new ASA for 2nd ISA server.

3) If 2) is right how are you proposing to firewall the Teacher internet  connection ie. it's not clear whether you intend to use this ISA as  both a proxy server and a firewall.

Yes we will use ISA as proxy + firewall.

Regards,

0 Helpful
Customers Also Viewed These Support Documents