Salonge
asked on
Splitting network into several individual networks.
I am the IT Administrator of a corporation with 15 satellite sites across our state. We have one network and 15 sub-networks. Each site is connected to our headquarters site via a 20 mbps circuit and that is how they are connected to the internet. Each site has it own router and its own set of IP addresses. All devices connect to the Domain server at the headquarters site. We may have to split off the sub-networks and put them on their own individuals networks. If we were to get someone like Comcast, ATT or Verizon, how difficult would this be? I am thinking that it would not be that difficult, just some routing changes within my router, but this is crucial and I want to make sure.
Thanks
Thanks
ASKER
Currently, we have a subnet in every site and we currently have a core firewall that handles all the traffic. We have 6 point to point connections and 9 sites that connect to a COLO which then connects to the headquarters.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
if you want to keep the same exact topology but switch to internet links, you can setup a vpn inter-site to the main office and route the traffic to the internal addresses through the vpn, and internet traffic out directly.
if you keep the private link and add an internet direct link, you can create similar routes so the traffic is routed either through your private link or the direct internet connection.
there should be no need to add new routes on the main office's router.
if you keep the private link and add an internet direct link, you can create similar routes so the traffic is routed either through your private link or the direct internet connection.
there should be no need to add new routes on the main office's router.
ASKER
Okay, I understand, but we are removing the connection between our sites and each site would have to be set up as their own site, with their own router and internet access. I just want to know how difficult would this be to make that conversion. Would I just need to change the routes in the router to point to the internet router that would most likely be provided by the ISP or is it more complicated than that?
it is not more complicated if you do not need intersite communication. it you do, you'd need an additional VPN or setup individual access for each service.
Can you work with different VLANs per site in one Subnet? Or is there a subnet in every site?
Are your router security appliances to take control which host / service communicate with which host / service per site or is there a core firewall which handels all the traffic?