Hello, at work we are implementing voIP soon, also I've reached the 300 client threshold (computers plus phones) and I think it's time to implement VLan in my network, so I was planning it and would like to hear your opinions on this layout.
Wan 10.0.0.0/24 255.255.255.0
AP/Switch 10.0.1.0/24 255.255.255.0
Servers 10.0.2.0/24 255.255.255.0
Reserved? 10.0.3.0/24 255.255.255.0
Clients 10.0.4.0/24 255.255.254.0
Wifi Clients 10.0.5.0/24 255.255.254.0
Reserved? 10.0.6.0/23 255.255.254.0
Reserved? 10.0.8.0/22 255.255.252.0
Printers 10.0.12.0/24 255.255.255.0
Fingerprint/Cameras 10.0.13.0/24 255.255.255.0
Wifi Guest 10.0.14.0/24 255.255.255.0
Reserved? 10.0.15.0/24 255.255.255.0
Reserved? 10.0.16.0/20 255.255.240.0
voIP 10.0.32.0/19 255.255.224.0
It's structured this way to allow easy ACL based on masks, for example, 10.0.0.0/22 is the "safe" zone, 10.0.0.12/22 is the unsafe one and so on
Thoughts? Advices?
thank you in advance
No comments:
Post a Comment