Solved

Huge Networking  change.

Posted on 2014-11-03
8
190 Views
Last Modified: 2014-11-05
Hi

I have to rebuild our network this weekend using the following hardware and  I need help with the best way to do it.

I have the following
ASA 5505  Fw
Core switch is HP V1910 POE
User Switch  HP V1850G 24
WLC is a  MSN760
6 HP WAPs
10 Polycom IP phones  (internal Hosted)

I would like to  Create a
 mangament VLAN 501  IP  10.50.10.0/24
Production VLAN      502  IP  10. 60.10.0/24
Video VLAN                503  IP 172.16.123. 0 ./24
Voice  VLAN                 504 IP 192.168.1.0/24

Can the above be setup  on the  
HP V1910 POE  or would I need a full layer 3 switch  ? what network would I need on the firewall would I need all 4 vlans set up on it  ?
0
Comment
Question by:thombie
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 4
8 Comments
 
LVL 9

Expert Comment

by:stu29
ID: 40420251
Your 1910 should support 8 VLANs. So this is an option
Your ASA 5505 has plenty of ports so you could subnet here also.

Your routing table would be maintained on whichever device you decide to subnet on, so you do not need to worry about supernetting.  Both devices offer QoS so you can prioritize traffic (VOIP/Video etc)
0
 

Author Comment

by:thombie
ID: 40420386
so on the  v1910 I just need  create the Vlans and tag the ports  for each VLAN  ? and for the none voip switch just create a trunk  ?
0
 
LVL 9

Expert Comment

by:stu29
ID: 40421455
Yes on the v1910.  For you non voip switch .. you can get away with just hanging it of the appropriate VLAN on the 1910.

Remember .. you Firewall will need to know about all your subnets to allow traffic and route correctly
0
Get proactive database performance tuning online

At Percona’s web store you can order full Percona Database Performance Audit in minutes. Find out the health of your database, and how to improve it. Pay online with a credit card. Improve your database performance now!

 

Author Comment

by:thombie
ID: 40421477
on the firewall  I should create  static routes to each subnet  ?
0
 
LVL 9

Expert Comment

by:stu29
ID: 40421496
This depends on how you will set this up.  Will you put your Firebox on its own VLAN and route your traffic on the switch to use this VLAN as your gateway .. or will you connect up each VLAN to a port on the Firewall?

If your firewall is on its own subnet, then no routes are required.  All you have to tell your firewall that those subnets exist on that one interface and it should do the rest.

If you go for the VLAN to FW Port option, then the firewall will know they all exist and you will then create all your access rules across subnets.
0
 

Author Comment

by:thombie
ID: 40421542
I need the most easy solution.  what do you suggest  ?
0
 
LVL 9

Accepted Solution

by:
stu29 earned 500 total points
ID: 40421639
easiest would be to contain your routing on your switch and have your firewall on its own VLAN.

If you need controls between subnets for security, then using the Firewall ports would be the easiest.
0
 

Author Closing Comment

by:thombie
ID: 40425611
Thanks This solutions has worked for me.
0

Featured Post

IoT Devices - Fast, Cheap or Secure…Pick Two

The IoT market is growing at a rapid pace and manufacturers are under pressure to quickly provide new products. Can you be sure that your devices do what they're supposed to do, while still being secure?

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A 2007 NCSA Cyber Security survey revealed that a mere 4% of the population has a full understanding of firewalls. As business owner, you should be part of that 4% that has a full understanding.
This article is in regards to the Cisco QSFP-4SFP10G-CU1M cables, which are designed to uplink/downlink 40GB ports to 10GB SFP ports. I recently experienced this and found very little configuration documentation on how these are supposed to be confi…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
Suggested Courses

634 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question