DR Office Vlans and IP Addressing

Hi,

We currently have a main office that uses 10.* as the internal address range with multiple vlans i.e.

Server Vlan 41 (10.0.0.0 /21)
Users Upstairs Vlan 42 (10.0.16.0 /21)
User Downstairs Vlan 43 (10.0.24.0 /21)
etc

This connects via a Cisco 3750x switch using the default IP Route to the Cisco ASA Interface (10.255.254.254) (Native VLAN)

Gateway of last resort is 10.255.254.254 to network 0.0.0.0

Question

I am looking to setup a remote office using the 172.16.* /21 address range

I was going to follow the same pattern.

DR Server Vlan 141 (172.16.0.0 /21)
DR Users Upstairs Vlan 142 (172.16.16.0 /21)
Dr User Downstairs Vlan 143 (172.16.24.0 /21)


However as the Cisco ASA at the remote site is managed I was unsure what the best practice when connecting the ASA / Switch together
in regards to VLANs and IP Address range as I don't want to over complicate the setup.

Regards

Kim
Mongo PeckAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Don JohnstonInstructorCommented:
Why not use the same class A address?

DR Server Vlan 141 (10.1.0.0 /21)
DR Users Upstairs Vlan 142 (10.1.16.0 /21)
Dr User Downstairs Vlan 143 (10.1.24.0 /21)

What do you mean when you say the "Cisco ASA at the remote site is managed"? Do you mean managed by someone else? If so, then you will need to coordinate with them.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Mongo PeckAuthor Commented:
The remote site firewall is managed as we are obtaining rack space.   We will then be connected via a VPN
Don JohnstonInstructorCommented:
Then they should be able to accommodate any IP address range you want to use.

I just think that by sticking to the same 10 series address, it may be easier to manage.  But it really doesn't matter which address you use. In fact, since this is a CoLo, you may want to use an address range outside of your other offices just to differentiate it.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Cisco

From novice to tech pro — start learning today.