Fibre/Copper Leased Line Configuration
Hi Guys
I have a network situation Im hoping someone might be able to help with.
We have a leased line provided to us via fibre but the router we must use (its a managed service line) only has copper interfeaces.
We have a Juniper EX2200 switch that we are looking to use in this office, so iwas wondering if we could do the following, or if anyone else has any other ideas.
1) Leased Line presented via fibre will connect to one of the SFP ports on the above switch.
2) I create a VLAN (VLAN 100 Internet) that includes a the relevant fibre port on the switch as well as including a normal RJ45 copper port in this vlan.
3) I create another VLAN (VLAN 101 LAN) that includes the remaining copper ports on the switch.
4) Fibre is plugged into SFP port on VLAN 100, and then patch lead on copper port on VLAN 100 on the switch is plugged into the WAN interface of the router
5) LAN port of router is plugged into an copper port on VLAN 101 on the switch.
6) Subsequent LAN devices are plugged into the remaining copper ports on VLAN 101
Would this work, or is there an alternative method thats better practice. Any config examples would be greatly appreciated.
Thanks
I have a network situation Im hoping someone might be able to help with.
We have a leased line provided to us via fibre but the router we must use (its a managed service line) only has copper interfeaces.
We have a Juniper EX2200 switch that we are looking to use in this office, so iwas wondering if we could do the following, or if anyone else has any other ideas.
1) Leased Line presented via fibre will connect to one of the SFP ports on the above switch.
2) I create a VLAN (VLAN 100 Internet) that includes a the relevant fibre port on the switch as well as including a normal RJ45 copper port in this vlan.
3) I create another VLAN (VLAN 101 LAN) that includes the remaining copper ports on the switch.
4) Fibre is plugged into SFP port on VLAN 100, and then patch lead on copper port on VLAN 100 on the switch is plugged into the WAN interface of the router
5) LAN port of router is plugged into an copper port on VLAN 101 on the switch.
6) Subsequent LAN devices are plugged into the remaining copper ports on VLAN 101
Would this work, or is there an alternative method thats better practice. Any config examples would be greatly appreciated.
Thanks
ASKER
Would I need to set up any special rules to stop intervlan communication from happening on the switch itself or anything like that?
Thanks
Thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
The only potential issue I see is getting VLAN 101 to the internet with out blending traffic which (IMO) defeats the purpose
Personally I would have gotten a couple of media converters and gone straight to the router
Fiber -> MC <=> MC -> Copper > Router > Switch -> VLAn 100 / 101
Personally I would have gotten a couple of media converters and gone straight to the router
Fiber -> MC <=> MC -> Copper > Router > Switch -> VLAn 100 / 101
ASKER
Hi kenfcamp
Was looking at that but theyre quite expensive for what they are IMO
Was looking at that but theyre quite expensive for what they are IMO
Actually in your case 1 should be all you need
?? That depends on your budget and what you're looking to get
Depending on the connector(s) the fiber is using (SM vs MM / LC, SC, ST, etc) a 100/1000 converter should be around 100 - 200.00 ea
which isn't bad
Depending on the connector(s) the fiber is using (SM vs MM / LC, SC, ST, etc) a 100/1000 converter should be around 100 - 200.00 ea
which isn't bad
@kenfcamp: IF a switch bleeds traffic between VLANs THEN it is time to kill that switch and throw it in the trashbin. LAN separation SHOULD be complete even for multicast/broadcast traffic. That is the definition of VLAN's.
If you have experienced bleeding traffic (not caused by mismanagement on L3 switches) then you definitely need to replace switches.
(or at least need firmware changes).
And following your suggestion would mean to completely drop VLAN 100 from the switch config for completeness.
(BTW, one can edit entries provided no one adds another below it).
If you have experienced bleeding traffic (not caused by mismanagement on L3 switches) then you definitely need to replace switches.
(or at least need firmware changes).
And following your suggestion would mean to completely drop VLAN 100 from the switch config for completeness.
(BTW, one can edit entries provided no one adds another below it).
@noc
Bleeding traffic???
I said Ble"N"ding
VLAN2 traffic allowed into VLAN1 in order to get Internet
Bleeding traffic???
I said Ble"N"ding
VLAN2 traffic allowed into VLAN1 in order to get Internet
The question was if traffic between VLAN100 and VLAN101 would accidentally mix... and no that SHOULD not happen. unless switches have buffy firmware, or in the case of L3 switch when a route is configure between them.
(Blending could have been a typo)...
In his case the router/firewall between VLAN 100 and VLAN 101 is filtering and allowing access to the internet (connected to VLAN 100).
item 4 & 5 of the list in the question.
Even if one wants to on L2 switches a router is needed to go from one VLAN to another. (Basicly on L3 switches a router is needed as well, but they have routers built in, so no external HW required).
(Blending could have been a typo)...
In his case the router/firewall between VLAN 100 and VLAN 101 is filtering and allowing access to the internet (connected to VLAN 100).
item 4 & 5 of the list in the question.
Even if one wants to on L2 switches a router is needed to go from one VLAN to another. (Basicly on L3 switches a router is needed as well, but they have routers built in, so no external HW required).
ASKER
Thanks for your help.
The only possible optimization would be if the fibre could be attached to the WAN port directly. (a few ms. forwarding delay).