Cobra25
asked on
LAN/Switching Design
Hi guys,
We have 1 flat network (no current need or use for VLANS). We are looking to replace our network switches due to age and redesign it.
We have a sonicwall Firewall cluster, after that we were thinking about going with 5 Cisco 2960 switches, or do you guys think we should go with a L3 stacked switch at the core level and also add VLAN routing in case we want to add them later and for redundancy.
let me know your thoughts.
We have 1 flat network (no current need or use for VLANS). We are looking to replace our network switches due to age and redesign it.
We have a sonicwall Firewall cluster, after that we were thinking about going with 5 Cisco 2960 switches, or do you guys think we should go with a L3 stacked switch at the core level and also add VLAN routing in case we want to add them later and for redundancy.
let me know your thoughts.
Last Comment
ASKER CERTIFIED SOLUTION
THIS SOLUTION IS ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
I completely agree with Ken. He listed some good example scenarios too.
It's far better to have the ability and not need it than to need it and not have it. I tell my clients on a regular basis to plan for the future.
It's far better to have the ability and not need it than to need it and not have it. I tell my clients on a regular basis to plan for the future.
Stacking depends on a few things. Are all of the switches in the same closet? How much do you want to spend. You can stack layer 2 2960X switches and you can stack 3850 layer 3 switches, but you can't stack the two types together. So you see if you buy 6 layer 3 switches so you can stack them you are spending a ton more than if you didn't.. However, you have a larger backplane, can have switch redundancy, etc.. Really depends on what you need and how much you want to spend.
ASKER
Yes 3/5 are in the same closet. I was thinking of stacking only to provide great redundancy in case of failure. I was thinking 2 L3's for the core, and the rest would be 2960's non stackables connected via etherchannel.
Yes that would give you a redundant core. That would be a good solution for you. When you stack the core, say switch 1 and 2, you are able to go ether channel between the switches. So say one of your 2960 switches can connect in an ether channel with one connection going to switch 1 of the stack and one going to switch 2 of the stack. So you have automatic Layer 3 protection if a switch dies, but physical redundancy as well.
ASKER
sounds good Ken, any refurb models you like that would get the job done? For both L3 and L2.
Well for layer 3 you are looking at 3850 switches or the end of life 3750 series in order to stack. Layer 2 the 2960X is the way to go
If you don't need that level of gear (your network is flat now), the small business line sg500X for sfp+ is a nice solution. Inexpensive enough you can get all the same models and stack them all together. The sg line also stacks across models but if you have sg500 it will limit the stack speed to 5gbps
ASKER
Thanks guys!
One last question: from my Sonicwall HA cluster i will have it go to the Cisco 3750 L3 Switch Stack.
Now, from each Sonicwall on the (x1 lan interface) i will have the cable to a 1 switch in each stack right? Would that provide the necessary HA to do a proper failover of the firewall?
One last question: from my Sonicwall HA cluster i will have it go to the Cisco 3750 L3 Switch Stack.
Now, from each Sonicwall on the (x1 lan interface) i will have the cable to a 1 switch in each stack right? Would that provide the necessary HA to do a proper failover of the firewall?
So take each sonicwall to a different switch in the stack.
ASKER
Thats what i was thinking, but i wanted to be sure, since each firewall is technically going into a 'different' switch in the stack i wasnt sure if the Sonicwalls would like that or not.
Well it will look like they are plugging in to the same switch since they are stacked.
SOLUTION
THIS SOLUTION IS ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
Aaron - why do you have 2 different modems connected to the 2 switches?
2 different wan connections, so they need to go into a switch so that both sonicwalls can see both wan connections. If someone is going to the trouble of HA sonicwalls, a dual WAN is usually included in the setup.
Networking
Networking is the process of connecting computing devices, peripherals and terminals together through a system that uses wiring, cabling or radio waves that enable their users to communicate, share information and interact over distances. Often associated are issues regarding operating systems, hardware and equipment, cloud and virtual networking, protocols, architecture, storage and management.
102K
Questions
--
Followers
--
Top Experts
Get a personalized solution from industry experts
TRUSTED BY
ASKER
Thanks! Should i stack them? Then have all the rest as access switches plugged into the core?