Announcement

Collapse
No announcement yet.

Trying to segment network first time VLAN or PVLAN

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Trying to segment network first time VLAN or PVLAN

    Hello guys,

    I have network design question here on my network.

    My network has grown bigger in recent years and I am now thinking of segmenting it department wise i.e. HR, SALES, Accounting, IT, Servers, Printers etc...

    no computers from each department should be able to access other department computers except servers vlan and printer vlans, IT vlan should be able to access all vlans but no vlan should be able to access PCs in IT vlan.

    We have one DHCP server on Win08 server and that should be able to give lease to all the PCs in the company. we have two DNS and DCs at the same site and they should be able to talk to all the PCs in the company (LDAP and DNS traffic)

    Looking at this what should be my best option? is it VLANs? or PVLAN?

    I have not bought any hardware yet but once it is clear I can start quoting.

    couple of question I have here is,

    I am more confused in to how does this PVLAN information will get replicated to other switches on my network? I have about 8 switches scattered at different locations in the same building. ( I have people in sales connected to switch1 on first floor and couple of sales guys are on switch2 on Second floor, I need them to talk to each other and server vlan)

    I know this a kind of common config for SMBs, there will be many of you who have done it, I am looking for your tips.

    Please help,

    Thanks a lot

  • #2
    Re: Trying to segment network first time VLAN or PVLAN

    OK Guys may be I should attach this picture to make it simple.

    If you look at the attached picture I have two switches, SW1 is layer 3 switch.

    I want all the segment in the picture to be able to talk to servers and printers segment. I want Eng segment which is scattered on both switches should be able to talk to members in it. I also want to create separate segment for wireless networking, so that visitors accessing this segment does not interfere with the other Members on the network and possibly restrict virus spread from visitors laptop. all the members should be able to go to internet through the router.

    your input is greatly welcome.
    Attached Files

    Comment


    • #3
      Re: Trying to segment network first time VLAN or PVLAN

      Anyone.....

      Comment

      Working...
      X