We help IT Professionals succeed at work.

Network Architecture

12K

Solutions

11K

Contributors

Network design and methodology, also known as network architecture, is the design of a communication network. It is a framework for the specification of a network's physical components and their functional organization and configuration, its operational principles and procedures, as well as data formats used in its operation. In telecommunication, the specification of a network architecture may also include a detailed description of products and services delivered via a communications network, as well as detailed rate and billing structures under which services are compensated.

Dear Guru's

Good day to you all .

As a novice , could you please help me  of the following scenario on how it can be achieved .

A client has approached me to evaluate their Network and Systems ,
1. What is in the network ?
2. Speed Utilization
3. Current  OS running etc
3.Recommendation Upgrades if any .

I would like to know, instead of checking manually , is there any free tool or open source like Zabbix , where i get the information extracted .

Any ides please

Regards
Aaron
0
hi,

I am planning a architecture and that includes a cross site and HA design with MariaDB.

I will use GALERA ARBITRATOR + maxscale + mariaDB, how it fit into the diagram below ?

MariaDB HA and DR
0
ABR in Stub area not blocking External Routes
ar
In the topology above I have configured R2 area 1 as stub the same for R3
R3 is blocking External Routes E2 and injecting IA default routes, but R2 is still allowing E2 [External routes]

R2#sh run | sec ospf
router ospf 1
 area 1 stub
 network 192.168.12.0 0.0.0.255 area 0
 network 192.168.23.0 0.0.0.255 area 1
R2#

Open in new window



R3#sh run | sec ospf
router ospf 1
 area 1 stub
 network 192.168.23.0 0.0.0.255 area 1
R3#

Open in new window


R2#sh ip route ospf
Codes: L - local, C - connected, S - static, R - RIP, M - mobile, B - BGP
       D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
       N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
       E1 - OSPF external type 1, E2 - OSPF external type 2
       i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
       ia - IS-IS inter area, * - candidate default, U - per-user static route
       o - ODR, P - periodic downloaded static route, H - NHRP, l - LISP
       a - application route
       + - replicated route, % - next hop override

Gateway of last resort is not set

      7.0.0.0/32 is subnetted, 1 subnets
O E2     7.7.7.7 [110/20] via 192.168.12.1, 00:41:55, Ethernet0/0
      9.0.0.0/32 is subnetted, 1 subnets
O E2     9.9.9.9 [110/20] via 192.168.12.1, 00:41:55, Ethernet0/0
      11.0.0.0/32 is subnetted, 1 subnets
O E2     11.11.11.11 [110/20] via 192.168.12.1, 00:41:55, Ethernet0/0
O     

Open in new window

0
OSPF Routing table not showing OSPF Routes
os
in the topology above

I have configured ospf on R5,R6,R8,R9 in Area3 , however the OSPF routes show only on R5 and R6 but not for Area3 ,  R8 and R9 do not show OSPF routes in their table
I can ping between all 4 routers

Though every now and then a message about OSPF Adjacency comes up on the console
*May 17 21:46:07.003: %OSPF-5-ADJCHG: Process 1, Nbr 192.168.99.9 on Ethernet0/0 from LOADING to FULL, Loading Done
but when I run Show IP Route , no OSPF routes show up

R8#  sh ip route
      192.168.99.0/24 is variably subnetted, 2 subnets, 2 masks
C        192.168.99.0/24 is directly connected, Ethernet0/0
L        192.168.99.8/32 is directly connected, Ethernet0/0
R8#

Open in new window



R9#show ip route
      192.168.99.0/24 is variably subnetted, 2 subnets, 2 masks
C        192.168.99.0/24 is directly connected, Ethernet0/0
L        192.168.99.9/32 is directly connected, Ethernet0/0
R9#

Open in new window


it looks like that there is also Neighborship formed:
R8#sh ip ospf neighbor

Neighbor ID     Pri   State           Dead Time   Address         Interface
192.168.99.5      1   2WAY/DROTHER    00:00:35    192.168.99.5    Ethernet0/0
192.168.99.6      1   FULL/DR         00:00:33    192.168.99.6    Ethernet0/0
192.168.99.9      1   FULL/BDR        00:00:[code]

Open in new window

[/code]

R5 and R6 OSPF table does not show the OSPF routes for Area 3 which is the Network 192.168.99.0/24

R5#sh ip …
0
Can a VPC A in account A use an AWS Private Link or other means to get to a VPC B in account B and then reach a corporate destination over a Direct Connect link connected to VPC B?

Say EC2-1 has 172.18.5.10 and is trying to reach 10.5.5.5 on the corporate network. VPC B with subnet 172.17.0.0/16 already has a Direct Connect link to the corporate data center and already reach es10.5.5.5. What could I put in place to allow EC2-1 to hop through VPC B and get to 10.5.5.5?

Thank you.
0
My LAN is on a subnet 172.18.2.x. I am running out of IP address. What I would like to do is tale all the switches, wireless bridges, etc. and move them to a different subnet but I really want them to have internet access for firmware updates and such. So.... can't I take a cheap little router, plug the WAN port in to the 172.18.2.x subnet (which will give that router internet) then plug one of the LAN ports on it also in to the 172.18.2.X? That is assuming the the cheap has a subnet like 192.168.0.0

   It mean essentially that the cheapo router will have both a WAN and a LAN port connected to the 172.18.2.x subnet but couldn't I, at that point, change all my "non-critical" devices to the 192.168.0.0 subnet which will still let me get to them and give those devices internet?
0
Hello,

I am trying to setup new network. I suggested the network below. Any suggestion for best design will be appreciated.

1- Do I need to use two switches that is come before the firewall for high availability?
2- Do I need to setup VSS between two switches for the NGF?
3- Do I need to setup VSS between two switches for the ports that is go out from core switches and come in to distribution switches?
3- Do I need to remove the link between the two NGF?

Any document that can help me to setup the NGF cluster ( I read this article https://www.cisco.com/c/en/us/td/docs/security/firepower/fxos/clustering/ftd-cluster-solution.html#concept_410590E05DD5495E8F47C525AD905D43)

NGF.jpg


Thanks
0
Hi Experts

Could you give me an overall strategie on how to mantain a centralized DB Server with its correspondnt databases receiving data from other decentrilized servers and databases from time to time?

The actualization between the decentrilized server and the centrilized server wouldn't need to be automatic, a D-1 actualization would be good (running when the resources comsumption is low).

The objective is to use Big Data analysis on the centralized DB.

Thanks in advance!
0
We have Cisco Meraki MR33, Draytek 2862 router, Netgear GS724T switch and Netgear FS728TP POE switch.

We need the following:
* 1 SSID for customers (wifi only plus internet access)
* 1 SSID for EPOS (wifi only plus internet access)
* 1 LAN for PDQ machine (lan only plus internet access)
* 1 SSID and 1 LAN for business (wifi and lan plus internet access, wifi and lan must be able to talk)

How do we make sure that SSIDs and lans do not have access to each other based on the above?

Cisco Merakis are connected to the POE FS728TP. LAN devices are connected to GS724T. PDQ is connected directly to the router.

Thank you in advance
0
I am just curious if every ISPs will accept a /24 subnet for BGP advertisement.  If not, is there a way to find out what they do accept and/or who doesn't accept this?

Secondly, we have a primary ISP that is advertise a /16 and on the secondary ISP, we advertised a /24 subnet (that is included in the /16 of the primary ISP) to test speed and throughout..etc to avoid having to bring out the primary circuit.

We're seeing some different throughput when testing with speedtest.net and when changing the server to a local city, we're getting latency error so not sure about this.

The /24 is a local subnet on the second ISP router and I Just advertised this under the BGP statement and we have a default route out with a next hop of our second ISP.  The second ISP has a static route for this /24 to us and a default route out to the internet.

Not sure what might be causing some latency errors when changing the speedtest to some local servers.   It seems to be fine if we change the server to Seattle, Washington for example and I'm located in SF.

thank you!
0
Understanding IP OSPF Network Types.

On the screenshot below, it shows a table of IP OSPF Network Types.
Regardless of how neighbors are discovered, if DR/BDR are elected,etc...
I would like to know in which scenario should I use one type and not the other.

Thank you

ospf
1
hi guys

I'm currently trying to put a plan together to senior management for a strategy for their infrastructure and security. I have only just been hired for the project. My role is to provide leadership for the infrastructure and security teams.  I know exactly what I need to do, but my issue is that I'm trying to put this into a structured plan to follow in steps, but articulating this properly has been a bit of a challenge. The purpose of the plan is to liaise with important stakeholders to understand the vision/mission of the business goals in order for I.T to better support them.

At the moment, I've gone and met people in the teams and asked them about how things work, the infrastructure and the security in place. But, that's not part of a structured method/plan.

For example, I am setting the plan together in phases. In the first phase, I want it to be the understanding phase. So something like 'meet with direct reports'. Then 'understand from direct reports, their roles and responsibilities by spending two hours in the first week with them'.

Then something like 'exploring vulnerabilities across all verticals to identify shortfalls affecting productivity....' (or anything similar'.



The purpose is to expand this into phases, so that I can come up with a conclusion and show senior people as to what I will do in the next X number of months.



Do you guys have any plans you created or know of any good structure that is out there which can be …
0
Once you've used up all your private RFC 1918 space, are there certain non RFC 1918 IP blocks that are best practice to use for internal addressing?
0
Hi,

I have Cisco 3750 switch. I configured 3 Vlans on it. VLAN 10,20,and 30. Is there anyway that I can give VLAN 10 access to  VLAN 20 and deny it from access VLAN 30? I mean I want network of VLAN 10 and 20 to see each other and communicate but can not access network of VLAN 30

VLAN 10 network 192.168.1.0
VLAN 20 network 192.168.2.0
VLAN 30 network 192.168.3.0

Thx
0
Hello Experts,

I want to add a WIFI access point to a clients network.

These are the four results I am after:

1. Limit bandwidth  to WIfi AP- Can do this with my firewall.

2. Time access control - can do this with a LYNKSYS WIFI access point device

3. Limit or strip off Webmail attachments.

4. Monitor Data Usage on the access point and limit it.

1. And 2. Above are no problem but I don’t know how to a achieve 3. Or 4.

Does anyone know how to make 3. And 4. Work?

Thanks!
0
Hi experts,

I wish to know if I should divide a network in to subnets or I can use vlan or both?

Say if I use 192.168.10 as my network and the last octet as my host if I want 4 hosts I can simply chop it up with new subnet mask of 255.255.255.192 which gives me 4 hosts network (each subnet shouldn't be talking to one another unless I do some routing and set rules). I can also group the switch ports into different vlans and assign different network to each vlan. Say if I divide a 48ports switch into 4 hosts, then I will have 12 switchports per vlan and 192.168.10.x to vlan1 192.168.20.x to vlan2 etc... and device in different vlan will be assigned with different IP.

Will there be a case user will use subnet in conjunction with vlan? say if I divide the 192.168.10.x into 4 hosts and assign each host to each of the vlan instead of using different network? OR people will use either vlan or the subnet but not both together? Thanks.
0
We have a new building and I'm wondering what is the best to use, either a ladder rack or conduit for running about 70 cat6a cables and some fiber cables about 70 foot distance and about 20 ft in elevation from the basement to the 1st floor.  There is a hall way and 2 or 3 rooms between my server room and data closet.  There are tiles in the ceiling.
My general contractor is stating that ladder trays would be best and my low voltage is saying conduit is best.

I'm looking at it from a long term  situation, I want to make it as easy as possible for me to pull more cables as needed.  In the past, I had a conduit that was full of cables, and when I tried to pull more, my run got stuck and I couldn't pull any more, had to get a company to bore and install new conduit, so I don't want to experience the same situation.
With a ladder rack  or wire basket, I'll have to pop the tiles every 10 feet or so and get on ladders, so I guess it's more work, but I wont' have to worry about not able to pull more cables in the future.

Any suggestions?
0
Hi guys

I want to do a course in Cybersecurity with someone who knows their stuff backwards and whom I could learn a lot from from their teaching.  I'm a member of Pluralsight, which is great too. But I have worked with some talented people and you can learn exponentially with an absolute 'don' who knows how and what to teach. Do you guys know of names of individuals, whether on here or in and around London who you would highly recommend learning from and whom offer their time to do so?

Thanks
Yash
0
Is there a way on an A10 (AX) load balancer to create a single LTM VIP that has 4 servers behind it. 2 of the servers in a California datacenter, 2 of the servers in an Illinois datacenter.  Incoming requests would only load balance round-robin between the California servers and in the event that datacenter goes dark, the A10 will then round-robin between the Illinois servers?

Thank you!
0
Hello Experts,

I have 5 devices and I want to have them monitors for any up and down status for the IPs.

Is there  a free software I can install in one of the servers and add these devices.

Thanks,
0
Dear experts,

I have a network with Servers and end points that need to communicate via IP and TCP ports. I would like to add these IPs to our SolarWinds management, can I also monitor TCP specific ports connection.

On the network or server how can I find how many TCP ports are established between the server and clients.

Any Feedback will be appreciated.
0
Hello Experts,

I am at a customer site and I see that they have fiber connectivity  from distribution switch to access switches. When I look at the configuration I do not see any UDLD protocol applied.

My question is can I apply the UDLD protocol on the distribution switch and access switch globally and will that affect the uplinks. I am hoping to not have any distruption on the network.

Please assist
0
I have SC-LC orange from carrier's DMARC to the patch panel.  How to know for sure is it a single-mode or a multi-mode?
0
Does anyone know what RADB routes are?  We are requesting a LAN public IP from the Internet carrier that was promised.  Now they give us run around saying the route set belongs to RADB and they cannot update RADB route sets.  If the customer wants their prefix [1.1.1.0/24] to be routed via BGP, they would need to contact RADB to have them update their route set.  
We do not need a BGP.  Just requesting a public LAN IP address.

Does anyone know what does prefix belongs to radb mean?  I'm running the Whois and looks like the prefix belongs to my internet carrier.  Not to radb some sort.
Does the carrier give me a BS runaround on this?  It feels like it :)
0
Hello Experts,

I have issue with an external client, he is using
a laptop with Cisco anyconnect vpn client and he would
usually connect to the vpn and would be able to browse the
internet and also access internal resources, shares and sites.

Today he connected from home and he was not able to browse anything,
I checked his laptop remotely and I was not able to ping google or resolve
any DNS names. To get him going I gave him default gateway IP in his VPN connection
but I am not suppose to do that.

My quest is why when he connects to vpN, the DNS stops.
I tried to replicate the issue using my hotspot and on my laptop
but i did not get the same symptons, my VPN does not give me GATEWAY ip and I
am able to browse plus access the internal resource.

I am certain this issue is local to his internet connection
at home.Please do let me know if anyone has any suggestions.

Thanks,
0

Network Architecture

12K

Solutions

11K

Contributors

Network design and methodology, also known as network architecture, is the design of a communication network. It is a framework for the specification of a network's physical components and their functional organization and configuration, its operational principles and procedures, as well as data formats used in its operation. In telecommunication, the specification of a network architecture may also include a detailed description of products and services delivered via a communications network, as well as detailed rate and billing structures under which services are compensated.