?
Solved

/24 network running out of free IP addresses

Posted on 2014-02-09
6
Medium Priority
?
427 Views
Last Modified: 2014-02-12
Hi Experts,

Our 192.168.0.0 /24 network is running out of IP addresses.

What's the easiest way to get more addresses without changing the whole class (to 10.0.0.0 /8 or similar).

Can I just change the network mask on all devices and servers to /22?
That seems like the easiest way to go, I just wonder if that will work.

Please notice that we have a SAN network on 192.168.100.0 /24 - I want to make sure it won't be affected.

Let me know what you think.
0
Comment
Question by:itorana
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 3

Assisted Solution

by:computication
computication earned 1000 total points
ID: 39846443
The easiest way to go is to change your network to a /23. Or /22 if you feel, you need the extra IP addresses. This will not interfere with your SAN.

You could also go for VLAN separation but that requires more work and layer 3 switches.

Kind regards,

M
0
 
LVL 8

Expert Comment

by:Surrano
ID: 39846670
With these restrictions you can go as high as /18 (192.168.0.0-63.255) but I'd say that there must be something strange in your network topology. Slicing into smaller subnets would likely improve routing performance as well, even if you need to add another router.

Try to reorganise the IP addresses into subnets of <256 by means of
- physical topology (e.g. server room A = 1.0/24, server room B = 2.0/24
- logical topology (e.g. finance = 1.0/24, production = 2.0/24, development = 3.0/24)
and have common networking like the main route towards the external world is 0.0/24

Even if you have some (or even hundreds of) virtual interfaces on same piece of cable you could easily achieve different subnets used by different virtual interfaces on same physical interface. E.g. if you have a virtualisation server with 200 vms and 5 virtual interfaces each (o&m, app, db, cluster interconnect, backup) then you can configure the 200 O&M interfaces to use 1.0/24, the 200 app interfaces to use 2.0/24 etc.

Just make sure that the routers they are connected to also receive messages on all of these subnets.
0
 

Author Comment

by:itorana
ID: 39846677
Hi Surrano,

Thanks for detailed reply! We don't have any routers or even layer 3 switches to do routing. Could that cause problems in the future if we just changed the mask to /23? (500 addresses is more than enough).
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 17

Expert Comment

by:pergr
ID: 39846726
I recommend changing to /23.
You will keep using the same default gateway as before.

Generally, just change the /23 in your DHCP settings, and do not worry too much about migration. Catch up with all statically configured devices afterwards.
0
 
LVL 8

Accepted Solution

by:
Surrano earned 1000 total points
ID: 39846761
subnets should work with plain old "dumb" hubs or switches as well. Those that are so dumb that they don't know anything about netmasks :)

as a gradual approach, if you change the netmask to /23 or even wider then you can proactively distribute the static IP addresses and define the dynamic ranges in a way that later on, if you think it's worth the effort, you can change from one wide netmask to several narrower ones. But the simplest solution for the time being is indeed to simply change the netmask but make sure you do it everywhere.
0
 
LVL 26

Expert Comment

by:Soulja
ID: 39847434
What type of device is providing the routing for your network? You can just go to that interface and configure a secondary subnet on it.  This way you don't have to make any changes to your existing devices.
0

Featured Post

[Webinar] How Hackers Steal Your Credentials

Do You Know How Hackers Steal Your Credentials? Join us and Skyport Systems to learn how hackers steal your credentials and why Active Directory must be secure to stop them.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
For many of us, the  holiday season kindles the natural urge to give back to our friends, family members and communities. While it's easy for friends to notice the impact of such deeds, understanding the contributions of businesses and enterprises i…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…
Suggested Courses

764 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question