cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Cisco announces new innovations in SD-WAN, ISRs, SD-WAN Services, and Catalyst 9000 Series switches


3776
Views
0
Helpful
1
Replies
Beginner

Network Segregation

I have recently joined a company, and they  have below network topology.

There are these vlans defined with Ip routing enabled.

interface vlan 4
name "Four"
routing
ip address 192.168.4.77 255.255.255.0
exit
interface vlan 10
name "Infrastructure"
routing
ip address 10.10.0.1 255.255.255.0
exit
interface vlan 20
name "Infrastructure"
routing
ip address 10.20.0.1 255.255.255.0
exit
interface vlan 30
name "Infrastructure"
exit
interface vlan 40
name "Infrastructure"
exit
interface vlan 50
name "Corporate Desktop"
exit
interface vlan 60
name "Dev Domain"
routing
ip address 10.0.80.1 255.255.240.0
exit
interface vlan 70
name "R and D Domain"
exit
interface vlan 80
name "Support Domain"
exit
interface vlan 90
name "QA Domain"
routing
ip address 10.0.128.1 255.255.240.0
exit
interface vlan 192
name "Current Corp Domain"
routing
ip address 192.168.1.177 255.255.252.0
exit


Then there is a default route to firewall ip route 0.0.0.0 0.0.0.0 192.168.1.77
All the hosts in the environment have firewall as the default  gateway.

All the switches Data6, data5, data4, data3, data2, data1 are on native vlan's with 192.168.0.0/22 subnet.

Now The issue is that the network is really slow what might be the reason for it?

And they want to segregate servers on a different vlan which are now present on 192 ip address range.

Also they want to migrate it to 10.0.0.0 network to increase number of hosts for future. Is it really necessary?

Now my issue is can I segregate the network by creating vlan's without reassigning IP's to all the hosts on the network?

And if I need to reassign IP to all the host and servers will I have to change all NAT policies and access lists (which I understand is a yes), there are currently 330 access lists and 250 NAT Policies.

 

 

1 REPLY
Engager

DUPLICATE POSTING

DUPLICATE POSTING

Please rate useful posts & remember to mark any solved questions as answered. Thank you.
CreatePlease to create content
Content for Community-Ad
Ask the Expert- DMVPN on Cisco routers