Solved

Implementing VLANs

Posted on 2014-03-28
2
387 Views
Last Modified: 2014-04-11
Our Entire network is on the default VLAN 1.  The IP range is a /22 from 172.16.140.x – 172.16.143.x with only one gateway of 172.16.140.2 /22

What I want to do is be able to create VLANs within this IP scope while maintaining the current structure for a change over period.  This way I wouldn't have to do everything in one shot.  Unfortunately I do not believe that this is a feasible thing.

On my firewall I would have to create the structure like this.

Vlan 1            172.16.140.x – 172.16.143.x /22   GW- 172.16.140.2 (Already Created)
Vlan 141              172.16.141.x /24                            GW- 172.16.141.1
Vlan 142               172.16.142.x /24                            GW – 172.16.142.1

So when the computer/server/device is plugged into the switch it would have to be a port specific VLAN as to which network it is hopping on.  Only issue is on VLAN 1 it has the 4 class C scope that overlaps the other VLAN ranges.

Any chance this is possible? If so it would make my life a ton easier for the changeover.
0
Comment
Question by:ACCESS2008
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 50

Accepted Solution

by:
Don Johnston earned 500 total points
ID: 39961694
Any chance this is possible?
Not really. As soon as you try to assign 172.16.141.x/24 on the layer 3 device, it will error out with an "overlapping" IP address message.
0
 
LVL 17

Expert Comment

by:TimotiSt
ID: 39962531
For the reorganizing part:
- Try to cleanup/organize your /22 first.
- Don't be afraid to use new private subnets, they're free anyway. :)
- Start moving low-priority stuff to new vlans, like printers, where you can just easily update logon scripts to map them from the new IP. Using DNS might make it easier.
- Possibly move wifi services (at least guest) to a new vlan.
- You might get approval for downtimes from management if you cite security/performance reasons.
- Don't forget to provide DHCP services to the new vlans as necessary, relayed or otherwise.

Tamas
0

Featured Post

Manage your data center from practically anywhere

The KN8164V features HD resolution of 1920 x 1200, FIPS 140-2 with level 1 security standards and virtual media transmissions at twice the speed. Built for reliability, the KN series provides local console and remote over IP access, ensuring 24/7 availability to all servers.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Managing 24/7 IT Operations is a hands-on job and indeed a difficult one. Over the years I have found some simple tips and techniques to increase the efficiency of the overall operations. The core concept has always been on continuous improvement; a…
There are times where you would like to have access to information that is only available from a different network. This network could be down the hall, or across country. If each of the network sites have access to the internet, you can create a ne…
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…
Suggested Courses

623 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question