Hi All ,
I have to do a new network design for my company and I would like for other engineers to check over my work to see if there are any problems in my design.
How the network is to work.
VLAN 1 contains all servers (domain controllers, network monitoring etc) as well as wifi AP's
VLAN 2 need to be able to get to VLAN1 for services such as DNS,Printer Server,SQL server etc but VLAN 2 users are not to talk to VLAN 3 users
VLAN 3 need to be able to get to VLAN1 for services such as DNS,Printer Server,SQL server etc but VLAN3 users are not to talk to VLAN2 users
The cisco 2911 is to do the intervlan routing and be the Default Gateway to get out to the internet , An Ipsec VPN to america is setup on this router and will go via ISP 1
The PFsense will do load balncing between two ISPs as well as firewall .
For all users on VLANS 1,2,3 internet traffic is split where all internet traffic goes out ISP2 and any VPN traffic (10.1.0.0 network) goes out ISP1
Please see the network diagram , thanks in advance for anyone that replies.