Sunday, June 16, 2019

VLan Advice

Hello, at work we are implementing voIP soon, also I've reached the 300 client threshold (computers plus phones) and I think it's time to implement VLan in my network, so I was planning it and would like to hear your opinions on this layout.

Wan 10.0.0.0/24 255.255.255.0

AP/Switch 10.0.1.0/24 255.255.255.0

Servers 10.0.2.0/24 255.255.255.0

Reserved? 10.0.3.0/24 255.255.255.0

Clients 10.0.4.0/24 255.255.254.0

Wifi Clients 10.0.5.0/24 255.255.254.0

Reserved? 10.0.6.0/23 255.255.254.0

Reserved? 10.0.8.0/22 255.255.252.0

Printers 10.0.12.0/24 255.255.255.0

Fingerprint/Cameras 10.0.13.0/24 255.255.255.0

Wifi Guest 10.0.14.0/24 255.255.255.0

Reserved? 10.0.15.0/24 255.255.255.0

Reserved? 10.0.16.0/20 255.255.240.0

voIP 10.0.32.0/19 255.255.224.0

It's structured this way to allow easy ACL based on masks, for example, 10.0.0.0/22 is the "safe" zone, 10.0.0.12/22 is the unsafe one and so on

Thoughts? Advices?

thank you in advance



No comments:

Post a Comment