A while back I remember reading a post that I believe was in this subreddit discussing subnetting at multiple sites. One person was discussing how instead of using the second octet as the site identifier (10.site.X.X) they use the third octet (10.X.site.X). And then what they do is use the same second octet for each purpose at each site. so (10.1.site.X) would be for users at all sites. I believe their stated purpose was that this would allow an easier time making ACL's if all networks of a certain type at multiple sites needed ACL's set. So you just allow 10.1.0.0/16 and you're set if that was needed.
Would anyone care to discuss the merits of this vs using the second octet as the site identifier and give any pros/cons of both?
No comments:
Post a Comment