04-14-2015 09:13 AM - edited 03-07-2019 11:32 PM
I have recently joined a company, and they have below network topology.
There are these vlans defined with Ip routing enabled.
interface vlan 4
name "Four"
routing
ip address 192.168.4.77 255.255.255.0
exit
interface vlan 10
name "Infrastructure"
routing
ip address 10.10.0.1 255.255.255.0
exit
interface vlan 20
name "Infrastructure"
routing
ip address 10.20.0.1 255.255.255.0
exit
interface vlan 30
name "Infrastructure"
exit
interface vlan 40
name "Infrastructure"
exit
interface vlan 50
name "Corporate Desktop"
exit
interface vlan 60
name "Dev Domain"
routing
ip address 10.0.80.1 255.255.240.0
exit
interface vlan 70
name "R and D Domain"
exit
interface vlan 80
name "Support Domain"
exit
interface vlan 90
name "QA Domain"
routing
ip address 10.0.128.1 255.255.240.0
exit
interface vlan 192
name "Current Corp Domain"
routing
ip address 192.168.1.177 255.255.252.0
exit
Then there is a default route to firewall ip route 0.0.0.0 0.0.0.0 192.168.1.77
All the hosts in the environment have firewall as the default gateway.
All the switches Data6, data5, data4, data3, data2, data1 are on native vlan's with 192.168.0.0/22 subnet.
Now The issue is that the network is really slow what might be the reason for it?
And they want to segregate servers on a different vlan which are now present on 192 ip address range.
Also they want to migrate it to 10.0.0.0 network to increase number of hosts for future. Is it really necessary?
Now my issue is can I segregate the network by creating vlan's without reassigning IP's to all the hosts on the network?
And if I need to reassign IP to all the host and servers will I have to change all NAT policies and access lists (which I understand is a yes), there are currently 330 access lists and 250 NAT Policies.
04-15-2015 12:10 AM
DUPLICATE POSTING
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide