Network Architecture





Network design and methodology, also known as network architecture, is the design of a communication network. It is a framework for the specification of a network's physical components and their functional organization and configuration, its operational principles and procedures, as well as data formats used in its operation. In telecommunication, the specification of a network architecture may also include a detailed description of products and services delivered via a communications network, as well as detailed rate and billing structures under which services are compensated.

Share tech news, updates, or what's on your mind.

Sign up to Post

Does anyone know what RADB routes are?  We are requesting a LAN public IP from the Internet carrier that was promised.  Now they give us run around saying the route set belongs to RADB and they cannot update RADB route sets.  If the customer wants their prefix [] to be routed via BGP, they would need to contact RADB to have them update their route set.  
We do not need a BGP.  Just requesting a public LAN IP address.

Does anyone know what does prefix belongs to radb mean?  I'm running the Whois and looks like the prefix belongs to my internet carrier.  Not to radb some sort.
Does the carrier give me a BS runaround on this?  It feels like it :)
OWASP Proactive Controls
LVL 13
OWASP Proactive Controls

Learn the most important control and control categories that every architect and developer should include in their projects.

Hello Experts,

I have issue with an external client, he is using
a laptop with Cisco anyconnect vpn client and he would
usually connect to the vpn and would be able to browse the
internet and also access internal resources, shares and sites.

Today he connected from home and he was not able to browse anything,
I checked his laptop remotely and I was not able to ping google or resolve
any DNS names. To get him going I gave him default gateway IP in his VPN connection
but I am not suppose to do that.

My quest is why when he connects to vpN, the DNS stops.
I tried to replicate the issue using my hotspot and on my laptop
but i did not get the same symptons, my VPN does not give me GATEWAY ip and I
am able to browse plus access the internal resource.

I am certain this issue is local to his internet connection
at home.Please do let me know if anyone has any suggestions.

We will be moving to ERP and Warehouse apps and need to install Wi-Fi throughout the plant and warehouse. Very roughly the area is 45,000 sq ft., with perhaps 25 foot ceilings. The factory (food processing) has a great deal of motors running, conveyor belts along the ceiling, etc. Very hot in the summer. Any tips on setting up Wi-Fi?
Hello Experts,

I have 200 MEG internet connection and recently due to business demands and changes they want to transmit in and out close to 1000 packets each will be 1 MB = 6000 MB worth of transaction over 8 hours daily, I want to know how to put this in a calculator to check if I will have enough bandwidth.

Can any of the experts recommend how to check this type of demand against the bandwidth and determine utilization consumption/

Thank you,
Just met with carrier tech.  He left me bunch of blue sc-lc fiber cables.
 Mentioned blue is a new yellow and aqua is a new orange.   Better throughput and better flex.
 is there a specs somewhere to learn about these new cables?
Hi Experts

Could you point the alternatives to assemble a LAN using Windows Server and clients?

Coaxial cables, optical fiber are options?

If so what is needed to implement it?

Thanks in advance.
Hello Experts,

I at a customer site and they a VALCOM V-2006A Amplifier , I configured the SIP paging adapter and connected it to the Valcom V-2006 Amplifier, the SIP adapter has paging extension. Now the question is how the speaker should connect to this amplifier? What do I do to make this work?

I don't know much about the VALCOM V-2006A amplifier and I need this to work.

Thank you,
Thousand Eyes seems like a really good software.  Helped me to figure out routing issues.  Love to deploy it our Data centers. Worth to have paid account?
Wonder what other forks are using?
I have an idea to create a separate DNS zone for the wifi network.  Segregation would help with administration and management.
 Does anyone do that already and does it help?  Has any benefits?
My concern is the lag maybe longer when moving laptops from wired to wifi network I think. Any other concerns?
 Please advice.  Thank you!
This server will host 200 network cables and many servers.
Our plan is to setup one two-post rack and two four-post racks (or cabinets). And here are the questions

1.  Should we install all the patch panels AND the network switches on the two-post rack? Or, install only the patch panels on the two-post rack, install the switches on the four-post racks (or cabinets) along with the servers?

2. Should we use four-post racks or cabinets?
I understand cabinets offer one more layer of security. Is there any other benefit to use cabinets?

3. Should we install the two-post rack in the middle of the two four-post racks (or cabinets)? Or, this doesn't matter?

4. Any other thoughts or suggestions??

Bootstrap 4: Exploring New Features
LVL 13
Bootstrap 4: Exploring New Features

Learn how to use and navigate the new features included in Bootstrap 4, the most popular HTML, CSS, and JavaScript framework for developing responsive, mobile-first websites.

I recently got a new customer whose network contains a few vlans.
This is an example from the router configuration:

Interface: eth0.20          
IP Adresse:

Interface: eth0.21
Ip adress:                  

I would like to understand why the network at interface eth0. 21 has three ip addresses. Can someone explain that ?

If you connect to Azure via Direct Connect - can you direct traffic to your data center with a default route in your VPC? That is say I want all traffic from my VM in Azure to traverse express route to my data center and go through a specific firewall. Is that possible? It is not possible with Amazon VPCs and Direct Connect. You can only do that if you can advertise a default route over the Direct Connect. You can't specify a static route to send all VPC traffic over DX.

We are currently evaluating option to move our voice to hosted.  We are in the process of two part project for this.  1st is migrating from VPN to MPLS.  The 2nd is to move from PBX/SIP to hosted.

Currently using Shortel and planning on gamma.

Anyone gone this route and suggest any options or caveats?

I have a trip in Los Angeles with around 30 people and I want to purchase wifi device that work for 30 people. do you know where I can get it?

I will get phone carrier for internet connection but just want to confirm we can find the device....
I'd like some design input regarding how best to peel off (and secure) traffic from a carrier network interface device (NID) providing both Internet and MPLS connectivity over a single pipe.

The carrier is providing a single circuit carrying both Internet and private data (MPLS backend) via different VLAN tags (let's say Internet=X, MPLS=Y) to a carrier-managed NID. There will be a pair of firewalls to handle the Internet traffic, so a pair of switches will be in front of them. Here's an overall simplified version of the scenario:

Single circuit providing Internet and MPLS
We’ll obviously extend the VLAN X from the switches to the firewalls, but I’m trying to determine the best way to handle the VLAN Y private traffic. I’ve recently seen a design where the customer had this external switch with a separate couple connections for the private VLAN directly to the core environment (so, bypassing the firewalls). Obviously, this is not wise, as these switches have a public IP, and compromise for them would provide access to the core directly.

So, the two options would seem to be 1) also trunk data VLAN (Y) over the same connection to the firewall, and then use them somehow to provide a layer of security/abstraction from the outside world, or 2) implement another layer of something off of these switches to do the same.

How are others handling enterprise Internet/WAN when these services are delivered over a single circuit?

I’m not afraid of reading, so reference links/resources would …
I have an environment of VMWare 6.5 hosts running on HP bl460c servers in a c7000 enclosure. All 16 servers have two vmnic's dedicated to iSCSI, and attached to a DS which is dedicated for storage traffic. These vmnic's are bound to vmk adapters which are in turn bound to the iSCSI software adapter on the host. The server nics are connected to Cisco switches via the passthrough interconnects on the enclosure.

For my storage device, I have a NetGear ReadyNAS 4312 with four 1Gb interfaces. I have configured these into dual bonded nics and both bonds are set with Layer 2 LACP modes and configured channel-groups on the Cisco switches. The bonds were assigned IPs, the vmks, were assigned IPs, and the software adapter was configured to discover the iSCSI LUN on the appropriate IP addresses.

During the original configuration, all MTUs in the path were at 1500. All 16 servers saw the storage and it was presented as a datastore to the cluster for which it was intended. All seemed well, but once the VMs were all running on the datastore, we began to have latency issues and significat lag when interacting with the VMs, whether by SSH or the console. As a test, I moved a couple of the trouble VMs to a different storage and the problems were eliminated. I knew that jumbo frames were supposed to be best practice for iSCSI but didn't want to shutdown the entire environment in order to configure and bounce all the switching but after these problems, and reading several papers on the …

I am trying to setup VSS and VLAN in Cisco 6807. I followed the steps in the link

I have questions (Any help will be appreciated)
- This steps must be done in one of the switches. Is that correct?
- I have 9300 switches that need to be connected to 6807 switch. I must connect two physical fiber connection one from each switch  (6807) to (9300 switches). Is that correct?
- I want to configure 10 VLAN's (,,...... with VTP domain in the (6807) switch ( I will need to assign IP address for each VLAN and create Management VLAN). How I can do that?
- I will change all the port that connect the 9300 and 6807 switch to trunk mode and use encapsulation Dot1Q.
- DHCP server (Multi scopes) address is So, I will need to configure IP helper address under each VLAN.
- Port 10 of Cisco (6807)  in switch 1 are connected inner interface of ASA [IP address and outer (public IP address 85.X.X.X)]. I need to be able to connect all VLAN's to be able to connect to internet and can see each other. How I can configure that?

Switch6807-1(config)#switch virtual domain 6
Switch6807-1(config-vs-domain)# switch 1
Switch6807-1(config-vs-domain)# switch 1 priority 110
Switch6807-1(config-vs-domain)# switch 2 priority 100
Switch6807-1(config)# interface port-channel 1
Switch6807-1(config-if)# no shutdown
Switch6807-1(config-if)# description VSL to switch 2

Open in new window


Please, I am not an expert and I need help. I am planning to buy core switch and I have questions. Can Cisco C6807-XL be stacked? Do I need to buy stack power and data cable only? or I have to buy modular to achieve stack? if yes what modular I need to buy?

These are the specifications that I have for the core switch

C6807-XL      Catalyst 6807-XL 7-slot chassis, 10RU
CON-SNT-C6807XLC      SNTC-8X5XNBD Catalyst 6807-XL 7-s
C6800-OTHER      Catalyst 6800 Other PIN; For Tracking Only
C6807-XL-FAN      Catalyst  6807-XL Chassis Fan Tray
C6800-XL-CVR      Catalyst 6807-XL line card slot cover
C6800-PS-CVR      Catalyst 6800 power supply blank cover
VS-S2T-10G      Cat 6500 Sup 2T with 2 x 10GbE and 3 x 1GbE with MSFC5 PFC4
VS-F6K-PFC4      Cat 6k 80G Sys Daughter Board Sup2T PFC4
MEM-C6K-INTFL1GB      Internal 1G Compact Flash
MEM-SUP2T-2GB      Catalyst 6500 2GB memory for Sup2T and Sup2TXL
VS-SUP2T-10G      Catalyst 6500 Supervisor Engine 2T Baseboard
C6800-48P-TX-XL      C6k 48-port 10/100/1000 GE Mod: fabric enabled, RJ-45 DFC4XL
C6800-48P-TX-XL      C6k 48-port 10/100/1000 GE Mod: fabric enabled, RJ-45 DFC4XL
C6800-48P-SFP-XL      C6k 48-port 1GE Mod:fabric-enabled with DFC4XL
GLC-SX-MMD      1000BASE-SX SFP transceiver module, MMF, 850nm, DOM
C6800-48P-SFP-XL      C6k 48-port 1GE Mod:fabric-enabled with DFC4XL
VS-S2T-10G      Cat 6500 Sup 2T with 2 x 10GbE and 3 x 1GbE with MSFC5 PFC4
VS-F6K-PFC4      Cat 6k 80G Sys …
Hi guys

There's a small office which I'm trying to help set up their infrastructure. They've only got around 3 to 4 people. There's network ports/switches etc. They have 3 to 4 PC's in there. They want a simple way to share files/folders in a centralised location, like a fileserver.

What would be the best way to do that? Would it be to get something like Azure files? How about OneDrive for Business? Or perhaps just using a NAS connected to the network?

Thanks for helping
Become a Certified Penetration Testing Engineer
LVL 13
Become a Certified Penetration Testing Engineer

This CPTE Certified Penetration Testing Engineer course covers everything you need to know about becoming a Certified Penetration Testing Engineer. Career Path: Professional roles include Ethical Hackers, Security Consultants, System Administrators, and Chief Security Officers.


I have two Cisco switches 9300 and I want to configure HSRP. I have 10 VLAN's

what is the difference between state full inspection and deep packet inspection ?

thanks !!!
How should spanning tree be designed?

I have a wireless controller that is essentially a switch and that is connected to a core switch.  The port, from the wireless controller is set with spanning tree turned on.  The core switch is using Spanning tree )(2 fiber connections on each switch uplink port.

I want to use another port on the same wireless controller that will be connecting to other switches.  Should I disable spanning tree on the other ports or not?  If these other ports on the wireless controller have spanning tree disabled will that cause any loop?

I have never worked with spanning tree before and I am not sure what I should do?  But I do not want to bring the network down.  Again Spanning tree I enabled on the core switch ports that will connect to the wireless controller.  Should I have spanning tree enabled on the wireless controller ports or will disabling spanning tree on the wireless controller bring the network down?

One may reference:
I am looking to upgrade my router to a router that can handle a higher volume and faster, but the number is confusing me a little.

I currently have a Ubiquiti ER-X and looking at the ERPoe‑5, I compared all the specs [RAM, Storage size, 1518 byte packets] and the ERPoe‑5 is higher or same, except for 64 bytes packets which the EX-R the throughput and pps, same is with the CPU frequency on theses 2 the EX-R is higher [EX-R throughput 957 Mbps pps 1,400,000 and the ERPoe‑5 throughput 490 Mbps pps 730,000, CPU frequency ER-X 880 MHz ERPoe‑5 500 MHz both CPU core count 2]

Please help.
My contractor ran fiber cables between floors.  Today I noticed there's an interesting transition connection from thicker cable to the thinner one.  Taped over with while electrical tape.
I didn't have that fiber patch panel.  They install it all.  Taped like that on both end of terminations.

  Does anyone know if this is how its done normally and should I worry about it?  Thanks.
HI Experts.

I have this policy map on most of the switches at my organization.  

      set dscp ef
      police 128000 8000 exceed-action policed-dscp-transmit
      set dscp cs3
      police 32000 8000 exceed-action policed-dscp-transmit
      set dscp default
      police 10000000 8000 exceed-action policed-dscp-transmit

We are now replacing the existing phones with a new cloud base phone system and they sent me these requirement for QOS and the vendor gave me this policy to use on the switches

policy-map PM-ASW-IB-User
class CM-ASW-IB-RC-Voice-RTP
set ip dscp ef
police 512000 16000 exceed-action drop
class CM-ASW-IB-RC-Video-RTP
set ip dscp af41
police 768000 8000 exceed-action policed-dscp-transmit
class CM-ASW-IB-RC-GeneralSIP
set ip dscp af31
police 32000 8000 exceed-action policed-dscp-transmit
class CM-ASW-IB-RC-Meetings-Control
set ip dscp af31
police 32000 8000 exceed-action policed-dscp-transmit
class CM-ASW-IB-RC-Other
set ip dscp af21
class CM-ASW-IB-Cust-AF13
set ip dscp af13
class CM-ASW-IB-Cust-AF12
set ip dscp af12
class CM-ASW-IB-Cust-AF11
set ip dscp af11
class class-default
set ip dscp default

Apply on the ports :

interface range Gi1/0/9-20
! no mls qos trust device cisco-phone
! no auto qos voip cisco-phone
! no mls qos trust cos
! mls qos trust dscp
! priority-queue out
! …

Network Architecture





Network design and methodology, also known as network architecture, is the design of a communication network. It is a framework for the specification of a network's physical components and their functional organization and configuration, its operational principles and procedures, as well as data formats used in its operation. In telecommunication, the specification of a network architecture may also include a detailed description of products and services delivered via a communications network, as well as detailed rate and billing structures under which services are compensated.