Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Subentting a network


  • Please log in to reply
1 reply to this topic

#1 apiel124

apiel124

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:09:18 AM

Posted 06 April 2017 - 02:25 PM

Hello All,

I am the new network administrator for a company that currently has 3  sites in the same city.  Their current network topology is something like this:

They run 172.16.0.0/16 network for sites 1 and 2.  Site 1 houses most of the servers for the network.

They run 192.168.15.0/24 for site 3

Site 2 has an owned fiber connection linking it back to Site 1

Site 3 has an owned fiber connection linking it back to site 1  

Currently 172.16.0.0 to 72.16.1.255 are unused

172.16.2.0-172.16.2.255 - used for server address assignments (approx 20 devices)  also default gateway is in this range

172.16.3.0-172.16.3.255 - unassigned

172.16.4.0-172.16.4.255 - Used for ERP servers (3 devices assigned)

172.16.5.0-172.16.5.255 - Network management interfaces (switches), IP cameras, and Mobile VPN client pool

172.16.6.0-172.16.6.255 - Printers (approx 50 devices)

172.16.7.0-172.16.7.255 - Corporate Wireless

172.16.8.0-172.16.8.255 - Location A dhcp pool

172.16.9.0-172.16.9.255 - Location B dhcp pool

Currently, all 3 sites hae local internet connection from local ISP.  Each site has a watchguard Firebox.  Site 1 has M400 (172.16.2.16), Site 2 has M300(172.16.9.1) and Site 3 has T30 (192.168.15.1).

Currently site 1 and site 2 are connected via layer 2 connection over the fiber.  Site 3 is connected via trusted interface to site 1 with ip address 192.168.15.254.

As of right now, end users on site 2 are statically assigned in 172.16.9.x range with a gateway of 172.16.9.1 to utilize local internet connection in that building as opposed to trunking internet traffic back over fiber link to site 1.

I would like to subnet and route this network to limit the broadcast domains, but unsure what the best solution would be to proceed with.  Would it be feasible to set up Branch Office VPN's between the sites and use DHCP relay for sites 2 and 3.

Any suggestions would be appreciated



BC AdBot (Login to Remove)

 


#2 Wand3r3r

Wand3r3r

  • Members
  • 2,027 posts
  • OFFLINE
  •  
  • Local time:07:18 AM

Posted 06 April 2017 - 06:18 PM

type and speed of fiber link?

 

What is your concern about broadcast domains?  Doesn't appear there is enough equipment to cause worry.

What specifically are you trying to address?






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users