Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1022
Views
5
Helpful
5
Replies

Managment VLAN for SW in Tier 3 network design

Go to solution
nikEnable
Level 1
Level 1

‎06-21-2022 09:04 AM

Dear All,

 

Good Day. Please note that I have 4 buildings and each building has 2 L3 distribution switches and 12 Access. All L3 distribution switches go to 2 core L3 switches and i have configured ospf single area 0 between core and dist L3 switches. I want to ask if I have to separate vlan management for each building or can I have them all in one?

I hope I have made myself clear in my question, I would greatly appreciate your advice

 

Thanks

1 Accepted Solution

Accepted Solutions

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame
In response to nikEnable

‎06-21-2022 10:08 AM

In the big network OOB is good, if you have small network that should work, if you looking all manangment to be same IP address range.

 

Make them small subnet  and distribute from OSPF.

 

Example : 172.16.99.0/24  in to 4 subnet /26 use them in respected network.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

View solution in original post

0 Helpful
5 Replies 5

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎06-21-2022 09:27 AM

L2 you can have all of them 1 VLAN range

 

Since you can not extend VLAN from CORE to Access switches, best i can think is.

 

Use Managment your  p2p address for Manangement or Loopback address as manangement (Loopback address will be anounced in the OSPF network, so others can see that IP address).

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
Flavio Miranda
VIP
VIP

‎06-21-2022 09:28 AM

Hi

 You dont need to but would be a good pract to have a management network. This can safely be one vlan ID across the buildings  to make it simple to remember and manage and one network with the size that can fit all your devices and allows for expantion.

 

0 Helpful

Go to solution
nikEnable
Level 1
Level 1

‎06-21-2022 09:53 AM - edited ‎06-21-2022 10:06 AM

Thank you for the reply. Bellow i have an example from my topology

 

Build - 1
i have created vlan 99
Dist-1 -> 172.16.99.1
Dist-2 -> 172.16.99.2
HSRP -> 172.16.99.3
Access-1 -> 172.16.99.4 i have enable ssh with ip default-gateway 172.16.99.3

and in the ospf
i have configured 172.16.99.0 0.0.0.255 area 0

Build - 2
i have created vlan 99
Dist-1 -> 172.16.99.5
Dist-2 -> 172.16.99.6
HSRP -> 172.16.99.7
Can i have remote access to the Access-1 from build-2 to build-1 ?

 

Build-1 and Build-2 connected to Core.

Can it works because it the same network. And the pc-admin is located to the Build-2 ?

It is also recommended to have hsrp for the mangment?

0 Helpful

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame
In response to nikEnable

‎06-21-2022 10:08 AM

In the big network OOB is good, if you have small network that should work, if you looking all manangment to be same IP address range.

 

Make them small subnet  and distribute from OSPF.

 

Example : 172.16.99.0/24  in to 4 subnet /26 use them in respected network.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
nikEnable
Level 1
Level 1
In response to balaji.bandi

‎06-21-2022 10:19 AM

I have a 12-hour in front of the screen and I didn't think about it. Thank you.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card