Subnet / VLAN

Hi!

This is the Scenario:

 - 1 Catalyst 2950 Switch
 - Class C IP address/ 192.168.2.xxx / 255.255.255.224
 - Cisco Network Assistant, software use for configuration

Question:

1) How will I configure VLAN for each subnet on the Switch?
2) How will I configure Broadcast Storm on the Switch?
3) and How to configure Access Rights of users?

Thanks and Best Regards!

Herminio A. Billones Jr.
habjrAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

pjtemplinCommented:
You have only one subnet, so one VLAN should be fine.

What sort of access rights do you want to give or take away?

For reference, the Internet is classless and has been for years.  "Class C" is no longer used.  192.168.2.xxx is in legacy class C space, but your subnet mask is actually /27, not the mandatory /24 a class C had.  You'll want to write that subnet as 192.168.2.xxx/27 to properly explain your topology.
Don JohnstonInstructorCommented:
1) Do you want to create additional subnets/VLANs? Did you start out with a Class C address and you want to subnet it with a /27 mask, or do you want to subnet the /27 address?
2) http://www.cisco.com/en/US/products/hw/switches/ps628/products_configuration_guide_chapter09186a00800d84c2.html#xtocid1
3) Can you be more specific?

-Don
habjrAuthor Commented:
This is the entire scenario

This is the scenario in detail,

- 2 DLink Switch
- Catalyst 2950 series
- 6 subnets, using 192.168.2.xxx for our office and clients, subnet of 255.255.255.224
- 24online server that acts as Internet Access Server, ip 192.168.2.254, 193.220.58.10 public ip
- mailserver ip 192.168.2.253, 193.220.58.13 public ip
- cachesever ip 193.220.57.2
- pc acting as a router but no router box at all

Requirments,

1) VLAN for each subnet should be different
2) VLAN for servers should be different
3) VLAN for servers should have access for our office VLAN
4) Access right to be assigned for each users, users cannot access servers except for http and mail
5) broadcast storm should be avoided

- How will I configure the Switch to cater these requirments and make the network secure and stable at all times.

- the switch ports disable due to BPDU, what's the proper way to configure.

- what cisco router model would you recommend for such setup

Thanks and Best Regards,

hermie
pjtemplinCommented:
1,2,3: set VLANs in switches, assign ports to correct VLAN.
4: use an access list on the router to restrict access.
5: "storm-control broadcast level X"

What ports are disabling due to BPDU and what is the exact error?

How much traffic are you going to be passing through the router?  Can't suggest a router without that information.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Routers

From novice to tech pro — start learning today.