Scribd Logo
Hochladen

Willkommen bei Scribd!

  • Medium Site Network Design

    Hochgeladen von

    ashwani76
    91 Ansichten4 Seiten
    This document provides a high level design for medium sized field sites. It shows the typical network infrastructure which includes routers, switches, wireless access points, firewalls, and other devices. The core switches provide connectivity to routers for the WAN links and modules. Additional ports are allocated for IT equipment and wireless access points, with the remaining ports used for user connections.

    Originalbeschreibung:

    Originaltitel

    Template

    Copyright

    © Attribution Non-Commercial (BY-NC)

    Verfügbare Formate

    PDF, TXT oder online auf Scribd lesen

    Stufen Sie dieses Dokument als nützlich ein?

    Sind diese Inhalte unangemessen?

    Dieses Dokument melden
    This document provides a high level design for medium sized field sites. It shows the typical network infrastructure which includes routers, switches, wireless access points, firewalls, and other devices. The core switches provide connectivity to routers for the WAN links and modules. Additional ports are allocated for IT equipment and wireless access points, with the remaining ports used for user connections.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Als PDF, TXT herunterladen oder online auf Scribd lesen
    Markieren Sie unangemessene Inhalte
    91 Ansichten4 Seiten

    Medium Site Network Design

    Hochgeladen von

    ashwani76
    This document provides a high level design for medium sized field sites. It shows the typical network infrastructure which includes routers, switches, wireless access points, firewalls, and other devices. The core switches provide connectivity to routers for the WAN links and modules. Additional ports are allocated for IT equipment and wireless access points, with the remaining ports used for user connections.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Als PDF, TXT herunterladen oder online auf Scribd lesen
    Markieren Sie unangemessene Inhalte
    von 4

    Field Field

    SItes SItes

    HQs

    Internet

    MPLS MPLS
    Provider Provider
    Core

    WR01 WR02
    2821 2821
    Lab

    DEMO

    CR01
    Office LAN/Distribution

    FE0
    WA01

    Proprietary Project Medium Size Sites Change Control Revision 1.0


    Use Pursuant to Title High Level Design
    Company Instructions
    Author Joe Engineer Date 20 JUL 07 File Name MediumSiteTemplate.vsd WAP 8xx-72xx
    Router
    Workgroup
    LAN switch IDP
    VPN
    Gateway
    VPN
    Concentrator
    Catalyst
    3750
    76xx Router
    Catalyst 65xx Firewall
    WAP
    Air
    Magnet Net Cache Cloud
    IP
    Phone
    LAN Switch Port Assignments
    Port Function
    FastEthernet 1/0/1 Router 1
    FastEthernet 2/0/1 Router 2
    FastEthernet 1/0/2-3 Modules
    WAN Circuit 1 WAN Circuit 2 FastEthernet 2/0/2-3
    FastEthernet 1/0/4-7
    Modules
    IT Stuff (Cyclade, ELAN/CLAN, UPS, Security System, AirMagnet, etc)
    FastEthernet 2/0/4-7 IT Stuff (Cyclade, ELAN/CLAN, UPS, Security System, AirMagnet, etc)
    FastEthernet 1/0/8-10 WAPs
    FastEthernet 2/0/8-10 WAPs
    FastEthernet 1/0/11-48 User ports
    FastEthernet 2/0/11-48 User ports
    FastEthernet 3/0/1-48 User ports

    Physical Notes
    - Modules represent any optional module the site may have (Demo Labs,
    Engineering Networks, Data Centers, etc). Equipment for these modules
    will not be supplied by the IT Networking Team unless IT Networking has
    management responsibility for all devices inside the Module.

    [Interface
    [Interface
    - Number of WAPs needed will be based on the site layout. Six LAN ports

    Name]
    Name]
    are provided for WAPs.

    Split IDFs
    Core

    FE0/1/1
    For sites that have more than one IDF, the second IDF will be
    WR01 FE0/1/1 WR02
    2821 2821 connected as pictured below. The first IDF should contain the
    standard Tier-3 sites with two routers and 3750(s). The
    FE0/1/0

    FE0/1/0
    second IDF can have as many 3750s as needed (stacked if
    more than one), connected to the CR stack in the 1st IDF. The
    3750(s) in the 2nd IDF should be named AS01. Users and
    WAPs should be distributed between the two IDFs. SFP ports
    should be used to connect the switches with appropriate SFPs
    based on site cabling.
    FE1/0/1

    FE2/0/1

    CR01
    Stack
    C3750-48PS-S
    C3750-48PS-S

    Lab
    C3750-48PS-S
    DEMO
    Office LAN/Distribution

    CR01

    AS01
    FE0

    [AP Name]
    [Model Name]

    Proprietary Project Medium Size Sites Change Control Revision 1.0


    Use Pursuant to Title Physical Design
    Company Instructions
    Author Joe Engineer Date 20 JUL 07 File Name MediumSiteTemplate.vsd WAP 8xx-72xx
    Router
    Workgroup
    LAN switch IDP
    VPN
    Gateway
    VPN
    Concentrator
    Catalyst
    3750
    76xx Router
    Catalyst 65xx Firewall
    WAP
    Air
    Magnet Net Cache Cloud
    IP
    Phone
    Layer 2 Notes
    - User VLANs are configured as needed. The site can have
    multiple VLANs as needed. VLAN numbering should follow the
    Network Architecture Document standards.
    WAN Circuit 1 WAN Circuit 2 - VLAN 5 will be the WLAN VLAN. The number of WLAN Access
    Points deployed will depend on the site needs. Access Points will
    follow WLAN standards for configuration.

    - Spanning Tree PortFast should be enabled on all user ports with


    the interface command “spanning-tree portfast”. PortFast should
    not be configured on any other interfaces.

    - Spanning Tree BPDU-Guard should be enabled with the global


    command “spanning-tree portfast bpduguard”.

    VLAN XXX WAN [Subnet]/30 - Both connections to a “Module” should be at L3 unless the Module
    only has L2 capability. In this case, L2 links are acceptable. In this
    case, the spanning-tree root should the L2 switch inside the Module
    Interface VLAN 41 Interface VLAN 41
    [IP] [IP Address] [IP Address] [IP] that connects to the 3750.
    Core

    Layer 3 Notes
    WR01 WR02 - User subnets will be configured at Tier 3 sites as needed. A
    [Loopback IP] [Loopback IP]
    separate subnet will be assigned to the WLAN. If extra user VLANs
    Interface VLAN 3 Interface VLAN 3 are configured extra subnets will be configured.
    [IP Address] VLAN 3 HSRP Group 1 [IP Address]
    [IP Address]
    - When using a Type-C WAN connection (Internet GRE), GRE
    VLAN 3 HSRP Group 2 tunnels will be configured to the respective regional hub sites.
    [IP Address]
    These tunnels will be encrypted with IPSec.

    - All point-to-point L3 interfaces will be configured with a 30-bit


    mask.
    VLAN XXX WAN [Subnet]/28
    - HSRP will not be configured as the stack of 3750 switches acts as
    one logical L3 switch.
    Interface VLAN 3
    [IP Address]

    - QoS will be configured according to the QoS Policy.

    Interface VLAN 101


    [IP Address] VLAN XXX Lab [Subnet]/24
    Stack
    C3750-48PS-S

    Lab
    C3750-48PS-S
    C3750-48PS-S

    DEMO

    CR01
    [Loopback IP]

    Interface VLAN 100 Interface VLAN 5


    [IP Address] [IP Address]
    Office LAN/Distribution

    VLAN XXX WIFI [Subnet]/26

    [AP Name]
    [IP Address]
    [Model Name]

    VLAN XXX Office LAN [Subnet]/24

    Proprietary Project Medium Size Sites Change Control Revision 1.0


    Use Pursuant to Title Logical Design
    Company Instructions
    Author Joe Engineer Date 20 JUL 07 File Name MediumSiteTemplate.vsd WAP 8xx-72xx
    Router
    Workgroup
    LAN switch IDP
    VPN
    Gateway
    VPN
    Concentrator
    Catalyst
    3750
    76xx Router
    Catalyst 65xx Firewall
    WAP
    Air
    Magnet Net Cache Cloud
    IP
    Phone
    WAN circuit 1 WAN circuit 2
    eBGP eBGP
    All Routes
    Site All Routes

    eBGP between eBGP between


    WR01 & Remote AS
    Site /22
    Private WR02 & Remote AS
    Site /22
    Summary
    AS Vlan 40 (iBGP) Summary

    Remote iBGP Remote


    AS All Routes AS
    Generate Site iBGP
    Summary Routes WR01 All Routes WR02
    for BGP 2821 2821

    Generate Site
    Summary Routes
    for BGP

    Static <WR01 Loopback0 IP> (HSRP Group 1 IP)


    Static <WR02 Loopback0 IP> (HSRP Group 1 IP)

    Static 0.0.0.0 0.0.0.0 (HSRP Group 1 IP)

    Static 10.203.X.0/24 (CR01 VLAN3 IP)


    Static 10.X.Y.0/22 (CR01 VLAN3 IP)
    Stack
    C3750-48PS-S
    C3750-48PS-S
    C3750-48PS-S

    CR01

    OSPF
    Routing between all configured
    Layer-3 VLANs and physical
    interfaces will be handled locally on
    the switch stack.
    BGP

    iBGP
    Route
    Reflector
    Cluster

    Layer 3 Routing Notes


    - Routing at Tier-3 sites will BGP for WAN routing. Static routes
    will be configured on both the WRs and CR01 to provide local
    routing.

    - iBGP will be configured over VLAN41 between the WAN routers.

    Proprietary Project Medium Size Sites Change Control Revision 1.0


    Use Pursuant to Title Layer 3 Routing
    Company Instructions
    Author Joe Engineer Date 20 JUL 07 File Name MediumSiteTemplate.vsd WAP 8xx-72xx
    Router
    Workgroup
    LAN switch IDP
    VPN
    Gateway
    VPN
    Concentrator
    Catalyst
    3750
    76xx Router
    Catalyst 65xx Firewall
    WAP
    Air
    Magnet Net Cache Cloud
    IP
    Phone

    Das könnte Ihnen auch gefallen