Network Architecture

12K

Solutions

11K

Contributors

Network design and methodology, also known as network architecture, is the design of a communication network. It is a framework for the specification of a network's physical components and their functional organization and configuration, its operational principles and procedures, as well as data formats used in its operation. In telecommunication, the specification of a network architecture may also include a detailed description of products and services delivered via a communications network, as well as detailed rate and billing structures under which services are compensated.

Share tech news, updates, or what's on your mind.

Sign up to Post

Hello,

I would like to route my voice traffic via separate IPVPN  link to the edge switch from my core switch.

What would the best strategy ?

Thanks,
Chanaka
0
Upgrade your Question Security!
LVL 12
Upgrade your Question Security!

Your question, your audience. Choose who sees your identity—and your question—with question security.

Hi,

We have a main Cisco 3750 Switch. From that switch fiber connections run from the trunk ports to different stacks, essentially all other stacks connect back to this switch. We want to add a backup to this switch in case of hardware failure. Question how do we add it.
1. Do we add it as a second switch in Slave role or is there another way adding it.
2. Also if the first switch does go down, how do we prepare the second switch so that the trunk port are ready to accept the fiber cables
0
As you can see from the attached diagram, site2 communicates with site1 via the pt-to-pt link as the primary. The MPLS is the backup link.

To get to the public server 1.1.1.1, site2 10.10.10.3.13 is going through site1. core1 redistribute static via EIGRP. and site2 learns the DG via EIGRP.

What I'd like to do is to reroute the DG  of site2 to FW2 when 10.100.3.13 or 10.100.3.14 fails. How would I go by accomplish this? Thanks

Capture.JPG
0
Hello Experts-
We have subscribed to MPLS IPVPN via Service Provide to connect our branch offices with HQ.
We have been given /30 subnet at HQ and each offices and running BGP between CE Router and ISP. We suppose to send the routes to ISP and then take will foreward via MPLS Cloud.

We want to install firewall at the HQ between MPLS Router and L3 Switch.

I am just concerned what routing protocol I should between MPLS Router and L3 Switch at HQ so that all HQ hosts can reach to branch offices.. Shall I used IGP or Static Routes ?
How to inject the routes from MPLS routes to firewall ? Is it advisable to run a routing protocol between them
How I can achieve redudancy if a router or firewall fails in HQ Office.

I am attaching a basic design.
Any suggestions and comments are welcome.
0
I have 2 5Ks running with VPC. They have been running fine for quite some time until today. One of the the 5Ks is not responding. I could not console in and the other 5K does not see it as a peer. I am planning to power it off and on. Will it get all the config and join the VPC when it gets back online? Thanks
0
configuring vlans on HP 5406zl
I'd appreciate some advice on configuring a data and voice vlan on a HP 5406zl, the current config is attached.
currently the whole switch is configured on the default vlan, however I want to add a voice vlan for a up coming voip phone system replacing the old analogue pabx.
the goal is to connect the pc's through the phones, phones on Vlan30 and Data on Vlan1.
I have added the vlan30 , however in need of some advice on the tagging and untagging of ports and the routing to enable the vlans to communicate with each other.
this switch also acts as the core switch and has IP routing enabled, it has 6 poe modules (ports A1- F24)
A1 to F22require both vlans , F23/F24 will be used to connect to switches on another floor and need to pass both vlans through. F17 is the link to the FW
appreciate some guidance on this as HP is not mother tongue, when switching.
current-HP-L3-core.txt
0
The goal is to connect the Main & Seed Office That have a city street and a railroad between them.  via the point to point wireless to be able to share the higher speed
Of the Charter cable along with giving the Seed office access to the NAS.
But I need to have a failsafe if the wireless goes down for any reason that the Main office
Would not lose their internet connection all together. Just fall back to the 10 m Fiber
What do you think the best route would be for this setup.
Running  any cable from the feed mill to the seed office is not an option with the railroad tracks
And a city street in the way.
Thanks in advance.
0
Good afternoon All

I am looking for community help to get me started on a Dell PowerConnect X4012 (2switch stack) configuration for 3 Dell XC servers with Nutanix on them.  I also have a TOR switch stack of 2 x Dell 3024 switches.  I have found in the past best practice documents for configuring Dell kit for VMware but I can't find anything conclusive for the above.

What vlans am I going to require for Nutanix AHV HCI?  

Any help gratefully received.

Thanks
0
Hi all, looking for some assistance with a SQL cluster issue, would appreciate any assistance available.
xxxSQL07 is the name of the SQL cluster (windows cluster name xxxSQLCLU02) made up of two nodes; xxxsql03 and xxxsql04.
All works, able to connect using SQL studio using Windows Authentication (tried multiple accounts, including the service account that all SQL runs on on this domain).
The problem has presented itself as we've recently created a reporting server (xxxrpt02). The local publication has been configured linking to the only database on xxxSQL07 and wizard completed with no errors. From SQL studio on xxxRPT02, when trying to add a local subscription I receive the error message, "The target principle name is incorrect. Cannot generate SSPI context. (Microsoft SQL Server)". I've tested the reporting server by connecting to a local subscription on another SQL cluster which works, I also tested the faulty domain cluster from the other working reporting server and received the same error.
This error occurs whenever I try to connect SQL studio to this SQL cluster. I've also tried connecting to the name of the windows cluster but that didn't work.
In an attempt to fix this issue I took the xxxSQLCLU02 offline from failover manager and performed a repair in an attempt to get this connecting in to Active Directory correctly.
The SQL cluster name is pinging and the IP is resolving when pinging -a.

I've done some digging around and am erring toward this issue being…
0
I have 3 WS-C3550-48-SMI and they are connected to each other via 1000BaseCX Gigastack. But they are only half-duplex. My users are experiencing slow response. Could it be because of those trunks with half-duplex?


sh int status
Port      Name                      Status           Vlan       Duplex      Speed      Type
Gi0/1     Switch A & C       connected    trunk      a-half        a-1000      1000BaseCX Gigastack
0
Cloud Class® Course: CompTIA Cloud+
LVL 12
Cloud Class® Course: CompTIA Cloud+

The CompTIA Cloud+ Basic training course will teach you about cloud concepts and models, data storage, networking, and network infrastructure.

Hi we have a thousand of switches in the network. and Orion has been configured on each switches. Now we have a few of commands that need to be implemented on each of switches. How can we add these commands to each switches via Orion? Or you can send me a link for this issue. Thank you
0
Is there a tool I can use to extract data from an intellution history .h24 file?  I do not have access to the iFix software that created the file.
0
I hope I can get some inputs from you on network design.
This electronics manufacturing company will be building a 2 storey, 100K square foot facility.
The mail floor - all the manufacturing machines, computers and servers running manufacturing software
The 2nd floor - the main server (Microsoft SBS), SharePoint Server, LOB software servers, and computers used by office staff and engineers.  

They have less than 200 employees, over 120 computers, 5 physical servers, some VoIP phones. They are all on the same network. Currently, there are only 28 IP free addresses available from the DHCP server (Microsoft SBS)

Here are my thoughts about the network in the new building
1. Install stackable switches in each floor's server room. Connect the two groups of switches via a long high speed trunk cable running thru the floor.
I think this will keep the network traffic on the main floor in the main floor network from the 2nd floor network, which optimize the bandwidth.
Currently, they are using D-Link DGS-1510-52 switches, which have been quite reliable, except that i had to power cycle one of them twice in the past years, and their firmware are a bit buggy.

Is it worth to deploy Cisco switches which are more expensive and cause a learning curve? Is there such a long high speed trunk cable at all?

2. Separate computer network, VoIP phone network and Security/Access Control network with 3 different networks.
This will release quite some IP addresses from the DHCP …
0
Is Message Passing Broker system and Message Queuing Broker system the same? I am referring to Amazon Simple Queue Service. Can it be referred to as Message Passing Broker system?

Please share any case studies link.
0
Why I can only get a complete traceroute on my PC to the remote server and not from my access switch to the server. I can ping 10.210.109.220 without any problem.

traceroute from my PC at the main site to the remote server via MPLS:
C:\Users>tracert 10.210.109.220

Tracing route to 10.210.109.220 over a maximum of 30 hops

  1     2 ms     2 ms     2 ms  10.19.31.253
  2    <1 ms    <1 ms    <1 ms  10.187.250.1
  3    <1 ms    <1 ms    <1 ms  10.187.5.41
  4    20 ms    15 ms    19 ms  10.210.11.86
  5    15 ms    15 ms    15 ms  10.210.10.221
  6    39 ms    36 ms    32 ms  10.210.109.220

traceroute from my L3 switch at the main site to the remote server via MPLS:

L3-sw# traceroute 10.210.109.220
traceroute to 10.210.109.220 (10.210.109.220), 30 hops max, 40 byte packets
 1  10.187.5.41 (10.187.5.41)  0.789 ms  0.793 ms  0.65 ms
 2  10.210.11.82 (10.210.11.82)  5.014 ms  5.063 ms  11.98 ms
 3  10.210.10.221 (10.210.10.221)  21.506 ms  15.497 ms  15.627 ms
 4  * * *
 5  * * *
 6  * * *
 7  * * *
0
Dear Experts, please help us this case:

We are using Cisco Router 3925 as the gateway for LAN users, users' IP addresses were NAT overload via the interface that connect to the ISP; however we got a network (192.168.50.0) that could not access a website.

If we NAT static a PC inside that network to a static public IP address (or a pool of public addresses), the PC could access the website; but if we did not NAT static and using NAT overload via gateway interface, PC could not access website.

Do you know why? Please suggest
0
Hi
I use 3750x 12s-e for core layer in my network
i have problem with HL3U bkgrd proce after one  day that switch is on and work
this problem cause turn of and on the device
after research and troubleshooting that i have done , The following results are obtained
Before the problem arises :
DC_CORE#sho platform ip unicast counts
# of HL3U fibs 458
# of HL3U adjs 354
# of HL3U mpaths 0
# of HL3U covering-fibs 0
# of HL3U fibs with adj failures 0
Fibs of Prefix length 0, with TCAM fails: 0
Fibs of Prefix length 1, with TCAM fails: 0
Fibs of Prefix length 2, with TCAM fails: 0
Fibs of Prefix length 3, with TCAM fails: 0
Fibs of Prefix length 4, with TCAM fails: 0
Fibs of Prefix length 5, with TCAM fails: 0
Fibs of Prefix length 6, with TCAM fails: 0
Fibs of Prefix length 7, with TCAM fails: 0
Fibs of Prefix length 8, with TCAM fails: 0
Fibs of Prefix length 9, with TCAM fails: 0
Fibs of Prefix length 10, with TCAM fails: 0
Fibs of Prefix length 11, with TCAM fails: 0
Fibs of Prefix length 12, with TCAM fails: 0
Fibs of Prefix length 13, with TCAM fails: 0
Fibs of Prefix length 14, with TCAM fails: 0
Fibs of Prefix length 15, with TCAM fails: 0
Fibs of Prefix length 16, with TCAM fails: 0
Fibs of Prefix length 17, with TCAM fails: 0
Fibs of Prefix length 18, with TCAM fails: 0
Fibs of Prefix length 19, with TCAM fails: 0
Fibs of Prefix length 20, with TCAM fails: 0
Fibs of Prefix length 21, with TCAM fails: 0
Fibs of Prefix length 22, with TCAM …
0
Hi all, I have been supplying mostly small to medium sized companies with general tech support. Most sites have one or two servers, a few VM's etc. workstations up to about 25

These small companies don't have separate departments so I could never see the real need for implementing VLAN's for any real benefit, and hence my exposure to VLAN's is limited at best

Some of these businesses are growing and I am starting to think that VLAN's could provide better network optimization and security. Problem is cannot get my head around VLAN's

I apologize if this been brought up before but I have looked at some forums and videos but I am starting to feel like a real idiot for just not getting it.

I would be super grateful if someone could direct me to some decent resources  to read about getting started with VLAN understanding and maybe give some opinions on the following:

1) Are VLAN's really beneficial for small businesses with an average of 20 users?
2) How would devices on different VLAN's with different IP ranges interact (Printers on VLAN10, Servers on VLAN20, Users on VLAN30 etc.) and why would I want to separate users and servers on different VLAN's
3) All users in these small office environments all share the same printers and servers, as well as the same internet gateway (How would a VLAN with a different IP range communicate with the only firewall or printer on another etc.) Nothing very complicated

I know this is 101 stuff for the CCNA's so please be …
0
Watchguard to Draytek site to site VPN - 2 tunnels required.

WG side has local IP of 192.168.1.1/24 and this needs linking to the draytek which has 2 LAN 10.0.0.1/24 and 192.168.100.1/24

I need a tunnel for both

Now i can set this up with one tunnel no issue. but cant see anywhere to add a second tunnel on the draytek end. Ive herd GRE might be the answer my question but havnt used this before.

How do i add a second tunnel. I have also tried a second VPN with the other tunnel but this causes both VPNs to alternate and not work correctly. any help or questions welcome
0
Cloud Class® Course: Python 3 Fundamentals
LVL 12
Cloud Class® Course: Python 3 Fundamentals

This course will teach participants about installing and configuring Python, syntax, importing, statements, types, strings, booleans, files, lists, tuples, comprehensions, functions, and classes.

Hi

Currently we having issue to make outbound and inbound call.

We suspect firewall is blocking, how to resolve the issue in Cisco ip phones.
0
My sonicwall is dropping my connection from a second subnet. I understand why, as it is identifying this 96... ip address as a WAN on the LAN. However I just simply want to allow all traffic from that IP to get through. How would I go about configuring the sonicwall?

I tried disabling IP Spoof Checking from the diag.html page, but it refuses to save and only says "there were no changes made".

01/15/2018 12:07:25.640      Alert      Intrusion Prevention      IP spoof dropped      96.67.165.X, 49873, X1      209.63.225.X, 80, X1      

Thanks!
0
Hi,

We are running an intranet in our organization...now we are thinking to provide the access of our intranet to the users even through their mobile..How can we do this... and is this possible?

Thanks in advance,
Srikanth Nandyala.
0
Network Diagram
Proper Case

We intend to connect  to  a remote Cisco 4321 ISR router  via  The local PSTN network , and
We  try to configure the remote router to accept connections over the Auxiliary port

We want to use this strategy to  provide an alternative line for managing remote routers in case of
The wan connection failure  .

We are using  HyperTermianl  to  make dial-up connection  to  remote sites ,, and
We want to get  the access to  the Console of  The remote router .

PIC2 in attachments describe -  "what the final  result  should be in  the proper and successful remote connection " 

we are using Cisco 4321 ISR Router in site2  and  USRobotics 56K Faxmodem- Model 5630 in both sites , and we

are trying to get access to the CLI of remote router in site2

could you provide us with the All  The technical steps and  Configuration needed  to accomplish this task ?
0
Need some help with configs at both ends.  I don't know if OSPF is necessary or not, since it
is not currently being used on the 8212 or Cisco 3560 that are currently connected by a Frontier Communications (WAN) Ethernet circuit.  Dark fiber will soon replace Frontier WAN.

The 5412 will soon be replacing the Cisco 3560 and one expert told me I should use OSPF to advertise all static routes on both HP switches.

Multiple VLANS (with the same IDs but different subnets) are currently defined on the Cisco 3560 and HP 8212 and communications have been fine for years w/o using OSPF. I could use some help with the configs of both switches and will pay for expert advice.
Thanks
Phil
0
Twice in the past month our static IP has been flagged by the CBL as hosting malware. The CBL provides the source and destination IP but we have not been able to capture ANY traffic from our network to the destination IP provided. Here is what the CBL gave us:

Detection Information Summary
Destination IP	146.148.124.166
Destination port	443
Source IP	[xxx.xxx.xxx.xxx]
Source port	16997
C&C name/domain	kemonzura.gdn
Protocol	TCP
Time	Tue Dec 26 18:15:27 2017 UTC

Open in new window


The source IP is set on our WAN interface on our firewall (Sonicwall) and packet capture on the Sonicwall shows no outbound traffic to the destination IP. We port mirrored the switch port where the WAN port is connected on the switch and ran Wireshare against it and still no packets destined for the destination IP. We put a firewall rule in place to drop any packets destined for the destination IP and still we get listed.

In short, we have not been able to capture a single packet egressing our network and destined for the destination IP provided by the CBL. Is it possible to spoof the source IP? If so, how do you re-mediate?

We are thoroughly puzzled by this.

Below are the full results of the CBL lookup:

Results of Lookup
[redacted] is listed

This IP address was detected and listed 56 times in the past 28 days, and 13 times in the past 24 hours. The most recent detection was at Tue Dec 26 18:15:00 2017 UTC +/- 5 minutes

This IP address is infected with, or is NATting for a
0

Network Architecture

12K

Solutions

11K

Contributors

Network design and methodology, also known as network architecture, is the design of a communication network. It is a framework for the specification of a network's physical components and their functional organization and configuration, its operational principles and procedures, as well as data formats used in its operation. In telecommunication, the specification of a network architecture may also include a detailed description of products and services delivered via a communications network, as well as detailed rate and billing structures under which services are compensated.