Setting up Core Switch & vlans
Posted on 2010-11-17
I'm very much a novice with network equipment. Our current setup is for the most part pretty flat. We have one (default) vlan running on 10.1.1.x that just about everything is connected to. I think most of the switches are layer two and they are connected to a Cisco ASA 5510 that connects a router and out to the internet. For reference we are mostly a Windows shop and run windows dns/dhcp. I'm using a mix of Cisco Network Assistant, telent console, and web portal to do the configuration on the switches.
What I'm trying to do is add a layer 3 switch to act as a core switch and add a few vlans.
1x Cisco ASA 5510 (10.1.1.1)
3x Cisco WS-C2948-GE-TX (10.1.1.x)
1x Cisco WS-CBS3020-HPQ (10.1.1.x) (Blade Enclosure Switch)
1x Cisco WS-C2950-24 (10.1.1.x)
3x Linksys SRW2048 (10.1.1.x)
Currently the gateway for the switches and through DHCP for the 10.1.1.x network is the ASA (10.1.1.1). Also, from what I can tell it looks like none of the switches are connected via trunking... I think they are just strung together.
Adding into the mix
1x Cisco WS-C3560G-48TS-S (adding as core)
What I've done so far...
1) Added the Cisco WS-C3560G-48TS-S.
2) Created additional vlans on the 3560
-vlan 1 default 10.1.1.x
-vlan 3 10.1.2.x
-vlan 4 10.1.3.x
-vlan 5 10.1.10.x
-Note: added the ip x.x.x.5 as the switche's ip on the different vlans. So example: switch ip on vlan 3 is 10.1.2.5, vlan 4 is 10.1.3.5, etc.
3) Setup trunk ports on 3560 and the other switches and connected them. The original connections between switches are sill connected I need to trace the lines and guessing should remove them/turn them into trunks.
4) Routing is enabled on the 3560 (via CNA's Inter-VLAN Routing Wizard). Gateway for the 3560 is set to the ASA 10.1.1.1.
5) Enabled VTP on the 5060 (server) and WS-CBS3020-HPQ (server) version 1. The cisco switches seem to be getting the vlan info correctly. Linksys switches only support GVRP so I added the vlans by hand on those switches.
6) Changed the gateway on most switches to point to the 3560 (10.1.1.5). Have a question on configuring a couple switches - see later.
7) Assigned a few ports on the 3560 to each vlan to be able to test with. Will add or move some of the switches over to other vlans later when everything is working.
1) The basics! Am I on the right track?
2) Since I want traffic to be able to flow from one vlan to another if needed I think I've covered the basics of what is needed. I'm also guessing that I will need to adjust my DHCP and systems static addresses with a new gateway pointing to the 3560's IP for that particular vlan. ie everything on vlan 1 10.1.1.x needs to be changed from 10.1.1.1 to 10.1.1.5. Is this correct? Is there a betterway I should be doing this?
3) How do I change the gateway entry via console (since CNA doesn't seem compatable) for the following switches (guessing its the same way)?
4) I'd like to enable Jumbo Frames on vlan 5. How would I go about doing this for the various switches? Mostly needed for the 5060 but might be useful down the line for the others switches if I add any to that vlan.
5) vlan 5 will have only iSCSI traffic running on it. Even though traffic is alowed between vlans I'm guessing it shouldn't impact the other switches (or vis versa) even though it isn't locked off completly. Am I correct? For security I'm guessing I might want to look at removing vlan 5 from being available to inter-vlan communication? If so how would I go about doing this?
6) If I add aditional trunks between switches 5060-other switches or other switches-other switches will that increase available bandwidth and/or redundancy or do I need to look into link aggregation as well?
7) Related to question one... any other recomendations?
I appreciate the help!