itnaanti
asked on
Cisco VLAN's Best Practices Question
I am looking for document or information on the best practices of configuring VLANs.
Specifically, I have a need for two VLANs, one that is for general usage in the office (let's say VLAN1), and a second that is internet usage only (cannot access any servers or other devices) (VLAN2). Both Vlan1 and Vlan2 need to go through the same router to access the internet.
My first question, is how to handle DHCP; do most companies implement a second DHCP server for the seperate Vlan, or is there a way to have a DHCP server provide service to both Vlans. Of course, I only want VLAN2 to be able to see the DHCP services on the DHCP server, all other ports should be blocked.
I have two Cisco 3560's, a Pix 506E, and a 1100 Series AP; DHCP comes from a 2003 server.
Any links to best practices, or VLANing theory would be appriciated.
Specifically, I have a need for two VLANs, one that is for general usage in the office (let's say VLAN1), and a second that is internet usage only (cannot access any servers or other devices) (VLAN2). Both Vlan1 and Vlan2 need to go through the same router to access the internet.
My first question, is how to handle DHCP; do most companies implement a second DHCP server for the seperate Vlan, or is there a way to have a DHCP server provide service to both Vlans. Of course, I only want VLAN2 to be able to see the DHCP services on the DHCP server, all other ports should be blocked.
I have two Cisco 3560's, a Pix 506E, and a 1100 Series AP; DHCP comes from a 2003 server.
Any links to best practices, or VLANing theory would be appriciated.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.