Network Architecture

11K

Solutions

17

Articles & Videos

11K

Contributors

Network design and methodology, also known as network architecture, is the design of a communication network. It is a framework for the specification of a network's physical components and their functional organization and configuration, its operational principles and procedures, as well as data formats used in its operation. In telecommunication, the specification of a network architecture may also include a detailed description of products and services delivered via a communications network, as well as detailed rate and billing structures under which services are compensated.

Share tech news, updates, or what's on your mind.

Sign up to Post

My networking skills are limited and I am presented with a problem.  I need to get a 10. subnet to talk to a 192. subnet.  What do I need to do/configure, and is it possible?
0
Independent Software Vendors: We Want Your Opinion
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Hello Everybody ,
 
 need you support RnS Expert Engineer

my scenario , the requirement are the router automatically move the the traffic flow based  link delay by using PFR with active/ active  by using Active/ Active ISP link utilization .

 here  are requirement and configuration    

LAN subnet :-
 188.117.100.172/29
 188.117.124.36 /29
my goals  to measure the traffic over all the available ISP
the  primary path of the first subent  is  ISP 0A, primary path of the 2nd subnet is ISP02
if the any ISP link experiencing any delay the  inbound and outbound shift the traffic automatically .

MY BGP configuration  
ip bgp-community new-format

outer bgp 7770
 bgp log-neighbor-changes
 timers bgp 10 30
 neighbor 172.21.8.169 remote-as 41176
 neighbor 172.21.8.177 remote-as 41176
 !
 address-family ipv4
 
  network 188.117.100.172 mask 255.255.255.252
  network 188.117.124.36 mask 255.255.255.252
 
  neighbor 172.21.8.169 activate
  neighbor 172.21.8.169 send-community both
  neighbor 172.21.8.177 activate
  neighbor 172.21.8.177 send-community both

ISP's BGP Configuration

neighbor 172.21.8.170 send-community both
  neighbor 172.21.8.170 default-originate
  neighbor 172.21.8.170 soft-reconfiguration inbound
  neighbor 172.21.8.170 prefix-list  PFR out
  neighbor 172.21.8.170 route-map BGP_COMM in
  neighbor 172.21.8.178 activate
  neighbor 172.21.8.178 send-community both
  neighbor 172.21.8.178 default-originate
  …
0
IS-IS router summarization can only be done on L1/L2 router is this correct.
There is now other place to do route summarization.
0
Hi All,

I'm currently looking at this proposal & thinking of implementing OSPF & MLPS I'd like some support with the config & any ideas of best practices?

Thank you all.
ospf.PNG
0
I have a security camera project that requires a run of about 1000FT for a few cameras.

I know Cat5/6 are not options due to the 300ft limitation.  I guess I could use POE switches at 300/600/900 ft as repeaters but that doesn't sound like a viable solution.

any ideas?
0
Why would I be getting these errors on my logs. I am running DMVPN.
 dest_addr 4.5.6.7, SPI 0x8e584d60
000058: May 15 09:18:21: %IOSXE-3-PLATFORM: SIP0: cpp_cp: QFP:0.0 Thread:000 TS:00000309438262163039 %IPSEC-3-REPLAY_ERROR: IPSec SA receives anti-replay error, DP Handle 3, src_addr 1.2.3.4 dest_addr 4.5.6.7, SPI 0x8d670b5e
000059: May 15 09:19:53: %IOSXE-3-PLATFORM: SIP0: cpp_cp: QFP:0.0 Thread:000 TS:00000309529825315373 %IPSEC-3-REPLAY_ERROR: IPSec SA receives anti-replay error, DP Handle 3, src_addr 1.2.3.4 dest_addr 4.5.6.7, SPI 0x8d670b5e
000060: May 15 09:39:13: %IOSXE-3-PLATFORM: SIP0: cpp_cp: QFP:0.0 Thread:000 TS:00000310690125718495 %IPSEC-3-REPLAY_ERROR: IPSec SA receives anti-replay error, DP Handle 3, src_addr 1.2.3.4 dest_addr 4.5.6.7, SPI 0x8d670b5e
000061: May 15 09:50:40: %IOSXE-3-PLATFORM: SIP0: cpp_cp: QFP:0.0 Thread:000 TS:00000311376506767405 %IPSEC-3-REPLAY_ERROR: IPSec SA receives anti-replay error, DP Handle 3, src_addr 1.2.3.4 dest_addr 4.5.6.7, SPI 0x8d670b5e
000062: May 15 09:52:37: %IOSXE-3-PLATFORM: SIP0: cpp_cp: QFP:0.0 Thread:000 TS:00000311493607193615 %IPSEC-3-REPLAY_ERROR: IPSec SA receives anti-replay error, DP Handle 3, src_addr 1.2.3.4 dest_addr 4.5.6.7, SPI 0x8d670b5e
000063: May 15 09:53:38: %IOSXE-3-PLATFORM: SIP0: cpp_cp: QFP:0.0 Thread:000 TS:00000311554565979494 %IPSEC-3-REPLAY_ERROR: IPSec SA receives anti-replay error, DP Handle 3, src_addr 1.2.3.4 dest_addr 4.5.6.7, SPI 0x8d670b5e
000064: May 15 09:58:38: 

Open in new window

0
Hello,

I have inherited responsibility for this issue.

There is a Cisco router which is presently connected to a Riverbed device which is to be retired, while I have access to the Riverbed Management Console I can't see how the Riverbed interface to the Cisco is configured and the support agreement for the Riverbed has expired (which is why it is being retired) so I can't ask them about this.

So the plan is to move the Cisco connection from the Riverbed to the HP Aruba switch.

I can see the config of the Cisco port
interface FastEthernet0
switchport trunk native vlan50
switchport trunk allowed vlan 1,49-51,61,90,1002-1005
switchport mode trunk
no ip address
duplex full
speed 100

Open in new window


I have tried configuring a port on the Aruba switch with all the vlans tagged, this didn't work, I'm unable to ping the Cisco.

I have also tried configuring the port on the Aruba switch in Trunk mode with all the vlans tagged, same result.

I haven't had much to do with Cisco and FWIW I don't understand the setting above
no ip address

Open in new window

as naturally the Cisco does have an IP address. Not sure whether this is significant or not.

Would appreciate advice on how to resolve

Thank you
0
I have 887-SEC(IAD887B-K9). itried to configure from cisco configuration manager but i didn't see in wizard ppoe selection.
Also i found from an old 887 i had the configuration file and i tried to configure the new one.i saved configuration and from reload the (CD) does not have any blinking searching to negotiate.
Can anyone help me configure the cisco for ppoe???

Regards!!!!
0
I have 20 hard drives from pc. Different size from 80 to 2 tb

What's the most affordable way to use them together n raid
So i can use in my home network?
0
I am setting up a linux server on a small network for people to access their files, each windows computer will have local login.
I will create logins on the linux server that will be for each individual on the network.
I will map each computer with the appropriate folders that belong to those users.
How can I handle it if someone else needs to use someone else's computer and would like to access their personal files?
Should I have 2 logins, one belonging to the user of that system and a guest of some sort but how can they get to their files easily without needing me to map the drive for them? I need simple because these are not very technical people.

thanks
0
Free NetCrunch network monitor licenses!
LVL 4
Free NetCrunch network monitor licenses!

Only on Experts-Exchange: Sign-up for a free-trial and we'll send you your permanent license!

Here is what you get: 30 Nodes | Unlimited Sensors | No Time Restrictions | Absolutely FREE!

Act now. This offer ends July 14, 2017.

Greetings,
I've fumbled around doing research on this issue, but am no closer to figuring it out.  In short, I am trying to access www.bcid.org from inside their office network and cannot. They are on a domain by the name of bcid.org and connected to a single Windows 2008 R2 server (that I did not set up).  The site can be accessed from outside the network and is hosted externally.

When I browse to the website in a browser, I get the error:
Forbidden
You don't have permission to access / on this server.
Additionally, a 403 Forbidden error was encountered while trying to use an ErrorDocument to handle the request.

When I ping www.bcid.org, I get the IP address (64.224.215.186) but the requests time out.  As a test, I've tried changing a workstation's DNS to 8.8.8.8 / 8.8.4.4 but still get the same issue.  I also flushed the DNS with no change.  I tried changing  the local hosts file on this workstation but also didn't see a change after adding a line for 64.224.215.186 www.bcid.org.  I just did an NSlookup from this workstation and got the server as the Google DNS server  and the Non-authoritative answer as:
www.bcid.org.bcid.org
64.224.215.186

I'm at a loss as to where to go from here or what the issue even is.  Thanks!
0
Dear colleagues, I'm trying to find
Network diagram examples and official requirements for all 7 layers.
And also I would like these requirements with citing sources.
0
We have a current network all hard wired with its own internet connection and a second wireless network with a separate internet connection. I have one SSID for Guests on the wireless side and I want to create a second SSID so if you need to access the wired side of the network with a laptop it is possible. How would I keep the setup as is and network the two to be able to access the wired side via the wireless?
0
Hi,

Can you please help me in draft IT policy for Call Center & contract center. recently we open the joint venture company for travel solution and we required an IT policy for this organization.


Regards,
Naresh
0
Can I upgrade my Nexus switch from version 6.0(2)N1(2a) directly new version 7.3(2)N1(1)
0
Is there a how-to guide to deploying wireless access points in a small business?  Something that will help in deciding the number and placement of APs based on configurations of the space , the building materials, (gypsum wallboard on metal studs),  the number of PCs to be served. and the optimal wireless standard e,g, N, AC etc.
0
We are being told by an outside technical consulting firm that we cannot upgrade servers until our entire network infrastructure has been replaced.  I need an experts opinion on the scenario and comments made by them (below).

For reasons too lengthily to go into here we are still running our internal domain on W2K3 servers. All of the desktops and laptops are "newer" machines running Windows 7 or 10.  We vertualized the BDC's and member servers 2 years ago but are still running the PDC on old (ancient) hardware.  The new server we verualized the other servers on is intended and capable of running a new domain (built from scratch) on Windows Server 2016.

Our current network infrastructure is built on Cat5 cabling installed circa 2001 and our switches are 10/100 with gigabit dual mode (62.5) fiber up-links. These are old and due for replacement also. Our facilities are spread out through several buildings nearly a city block long.  We have obtained quotes to rewire with a combination of single mode fiber and Cat6 cabling to the desktops, WAPS, etc. Those quotes came in around $100K which is some pretty bitter medicine to swallow at this time.

I suggested to the consulting firm that we move forward with the switch replacement using single mode capable units that we can configure to 100Megabit on all ports and proceed with the domain server upgrade.  Their response was as follows:

"we need to have a solid infrastructure in place in order to put the best
0
I need some help (or maybe a better angle of attack) connecting a few external users to our Azure tenancy.

NOTE: All resources mentioned below are in the same Azure Subscription, the same Azure Location and the same Azure Resource Group.

There's one virtual network with a Windows 2016 VM running. This v-net (call it MAIN-VNET) has a virtual gateway with a site-to-site VPN configured (call this S2S-VPN). This S2S-VPN is configured as a policy-based IPSEC VPN so that the on-premise Billion 7800VDOX can connect - which it does without issue. But, because it's a policy-based configuration, I can't configure a point-to-site VPN in coexistence with this S2S. If it were route-based configuration however, S2S and P2S coexistence would work (and does - I tested it). But the on-premise Billion then won't connect because it doesn't support IKEv2 (which is what route-based IPSEC VPN's use). So for now we're forced to use the policy-based config.

I have had to create a new v-net (P2S-VNET), then a new v-net gateway (P2S-VPN) and then configure the point-to-site VPN and client. I've done this and am able to connect to the VPN using the Azure VPN client successfully, but I can't access the Windows server on MAIN-VNET.

I can't create a "vnet-vnet" connection because one of the VPNs is policy-based and this is not supported by Azure.

I've tried creating a peer for both networks to each other (note that I have not ticked "Allow forwarded …
0
I have solarwinds to monitor the traffic .
I see (in solarwinds) cisco fast ethernet with 100% utilization although  the top conversation appears (in solarwinds)  in small payload of traffic in KB level .
How does that occur?
0
On Demand Webinar - Networking for the Cloud Era
LVL 8
On Demand Webinar - Networking for the Cloud Era

This webinar discusses:
-Common barriers companies experience when moving to the cloud
-How SD-WAN changes the way we look at networks
-Best practices customers should employ moving forward with cloud migration
-What happens behind the scenes of SteelConnect’s one-click button

Not all that familiar Cisco switches (Background is more HP Procurve).

Here is what I'd like to do.

Currently the VMWare ESXi v6.5 Network Teaming policy is set to "Route based on IP hash" and the HP switch ports are configured as "Trunk"(I believe EtherChannel is the equivalent)

Not sure how to configure the Cisco switch to use 2 10Gb ports as 1 20 Gb port. -Can this be done in the GUI interface (I only see LAG management as an option)?

Advice greatly appreciated.

Thank you.
Bob
0
Hi All,
I have been at this all day to no avail.
I am using Yealink IP Phones. The customer now wants to run his laptops with the phones. So the PC's run through the phones.
The phones use their own gateway on port 1 and the PC's use their own on port 24.
In addition to VID 1 created VID 20 for the Data on all ports and Voice on VID 50 Voice as per this example I found.
Phones and PC's are on all the ports except 1 and 24.
AlI really want to do is give priority to the IP Phones.

[url="http://www.dlink.com/uk/en/support/faq/switches/layer-2-gigabit/dgs-series/es_dgs-1210_como-configurar-voice-vlan"]

The phones don't work and neither do the PC's when activated.
I have also setup the phones WAN port with VID 50 and the PC port with VID20.

Any help is welcome
I have not tried tagging P1 and P24 on all 3 the VLANS.  

Thanks
Ken
0
I am setting up a branch office in a different location to the main but using the same domain. I realise this is a common scenario but am looking for the basic principles to follow in designing the server topography.

Main office is 120 users and hosts the Exchange server. Branch office is just 15 users. Offices have separate subnets but are joined by VPN. Limited file sharing will be required. Branch office users will access the Exchange server.

At this point I believe a read only DC, DNS and DHCP (for this subnet)  are required in branch office. Is this the correct?

We use roaming profiles in the mail office. I can set the location to store the branch office users' profiles individually group policy to configure the location of redirected desktops and documents folders, is this the best method?

Do I use DFS for the file-shares to keep copies at both offices?

Main office is Server 2008R2, branch is server 2012. Are there any compatibility issues?

Any other considerations I should be aware of?

Thanks for input.
0
Hi,
Our school network has the following:
Sonicwall NSA 250 M Router (acts as gateway and also handles a separate VLAN)
Network address  192.168.1.0 / 24 (subnet mask 255.255.255.0)
Single DC running Server 2016 std (ip 192.168.1.50), handling DNS and DHCP
About 150 endpoints

We're in danger of running out of IPs, so I'm hoping there's a way we can change just the subnet mask and retain the 192.168.1.1 - 192.168.1.254 range while gaining an extra range of IPs on the same, new subnet (for example 192.168.2.x, or .0.x) .  I'm also hoping that changing the subnet mask (but not the IP) of the DC will not cause problems. I know I'll have to reconfigure the subnet mask on any non-dhcp devices (such as network printers and the server).

So I've a couple of questions. What's the best way of doing this?  
Which subnet mask would yield what ranges of IPs?  
Is changing the subnet likely to cause any issues for the server (which I envisage keeping on the same IP?

Thanks in advance.
1
hello
is there any way to make this network work without having network loops (see attached diagram)
--all switches are layer 2 only
--2 floors in the same building
-- each floor has 9 layer 2 switches
-- the 2 floors are connected to each other via the 2 switches on each floor
network-drawing.pdf
0
I am expanding. So, got a fiber optics internet service. Provides 4Mbps unlimited download. This is a great leap from the limited download we currently have.

Most of my IP phones and computers are connected through the switch, but a good number of connections are still through wireless. I run 4 different rooms in one building 2 on the ground floor. 1 on the first floor and another on the second floor.

I will like to know the sort of switch. router. I should seriously consider to have a seamless operation.

Note. I currently use: for switch Netgear fs726tp ( the poe went out last year due to thunder storm). So, need another POE especially for my ip phones.  from the existing network currently use a  Huawei E5172 4G router. and I have lan run every where.

should add: have about: 18-23 employees now which can grow up to 40 within a short period of 6-8 months. Also, I am not in for fancy tools. Just something effective. In fact. I buy most of my items on ebay!
Thank you.
0

Network Architecture

11K

Solutions

17

Articles & Videos

11K

Contributors

Network design and methodology, also known as network architecture, is the design of a communication network. It is a framework for the specification of a network's physical components and their functional organization and configuration, its operational principles and procedures, as well as data formats used in its operation. In telecommunication, the specification of a network architecture may also include a detailed description of products and services delivered via a communications network, as well as detailed rate and billing structures under which services are compensated.