Layer 2 design question
Bookmark this page:
 Yahoo!
 Google
 Windows Live
 del.icio.us
 digg
 Netscape
|
|
|||||||||||||||||||
|
Posted by genki on December 6, 2005, 9:02 am
Please log in for more thread options I have a design question. The network is as follows, 1 6509, CatOS sup1a. Gigabit trunks (ISL) to approx 7 different departments, each has approx 4 switches, either 3548's or 3550's. This is growing. Some are in stacks. Most have 2 gigabit trunks to the 6509, with one being for redundancy. Here's the problem. I have inherited this network. All the switches are in VTP server mode. All the ports are in VLAN1 and they just default gateway VLAN1 out to the router. How do I proceed with this ? I think I should be creating separate VLANS for each cluster of switches (essentially per department VLANS) on the 6509 this would decrease the broadcast domain size and spanning tree table sizes, it seems to be what Cisco recommends. What would this buy me ? Can I do this migration to another VLAN without downtime ? I think Cisco recommends that I take user traffic off VLAN1 and leave it for control traffic, CDP, STP, VTP etc. Also do I either turn the 6509 into vtp server mode and all the switches into client, or everthing into transparent mode ? If I take a switch from client or server to transparent will it's VLANS get withdrawn ? In addition I am seeing STP: port up. STP port down etc, messages on the switches. I thought that once STP had converged I should not be seeing this unless something changes. Nobody it's taking ports up/down except me. Is there an STP problem or is this normal ? Any other suggestions would be appreciated. I just want to get this network back on it's feet again. Thanks Genki | |||||||||||||||||||
|
Posted by on December 6, 2005, 9:29 am
Please log in for more thread options "Campus Network Multilayer Architecture and Design Guidelines" from http://www.cisco.com/en/US/netsol/ns340/ns394/ns431/ns432/networking_solutions_package.html [Thanks Kate0] > VTP?
Not really worth having. Basically lets
you add VLANS to the network from any switch console and they get propagated automatically. Quickie advice is, "Transparent" > I think I should be creating separate VLANS
Pretty reasonabe, some people like 2 per pair
of uplinks which allows you to use both uplinks for traffic. However - Have you a suitable central router? (MSFC) > STP: port up. STP port down etc, messages
If you enable portfast on the links that connect to
end stations (PCs, printers, servers) then these may go away. You have asked a big question, sorry for the small answer. | |||||||||||||||||||
|
Posted by genki on December 6, 2005, 9:46 am
Please log in for more thread options Hey thanks for the link, that's a very interesting docuyment.
I will try enabling portfast to see if it helps. We have 3620's at the middle connecting two sites with a T1. That's about it. No MSFC's. Thanks for you reply. Appreciate it. | |||||||||||||||||||
|
Posted by DigitalVinyl on December 6, 2005, 8:13 pm
Please log in for more thread options
>Hey thanks for the link, that's a very interesting docuyment.
You can't subnet/vlan off the seprate building/switch stacsks without
> >I will try enabling portfast to see if it helps. > >We have 3620's at the middle connecting two sites with a T1. That's >about it. >No MSFC's. > >Thanks for you reply. Appreciate it. a central router to get them all to work together. It sounds like you use one network, no routing, except to cross the T1's on the way out. Breaking off VLANs(IP subnets) has a lot of subtle impacts. If you do not run a Windows domain with a ADS/WINS server, browsing teh network for other PCs will be affected. WINS/ADS is what enables Windows PCs to browse fro PCs/Servers/Printers beyond your broadcast domain. You may also have some software/systems that assume a flat network. They may rely upon broadacast to get to things. It affects Norton Ghost for instance--if you use it across the network for image backup/deployment. However you defintiely need to portfast/bpduguard every port that is not a run to another switch. That will end those STP messages. Also you need to set the Spantree priority of the main 6509 to a low number(1,10,4096). The starting default is around 32767. This creates a center for the spanning tree algorithm. All the paths are calculated optimizing the shortest path to the center. If this isn't done then typically the switch with the lowest mac address becaomes the center--which can cause a sub-optimal configuratoin and make for a lot of subtle problems. DiGiTAL_ViNYL (no email) | |||||||||||||||||||
|
Posted by genki on December 8, 2005, 9:26 am
Please log in for more thread options Hey thanks, very good information there. I just had a 15 minute outage
caused by VTP withdrawing one of the main VLANs in the network. I've asked for permission to turn VTP mode to transparent on every switch in the network (they do not have more than 4 vlans and rarely create/delete vlans) Will be doing that tonight, along with installing a NAMM module into the central 6509. Thanks for the info. Genki | |||||||||||||||||||
| Similar Threads | Posted |
| Layer 2 design question | December 6, 2005, 9:02 am |
| Design Question - On physikal Line as Layer 2/3 | June 3, 2008, 11:10 am |
| Design Question. | September 22, 2006, 7:25 am |
| Design Question | January 28, 2007, 3:09 am |
| HSRP Design Question | September 28, 2005, 4:30 pm |
| A question in network design | February 1, 2006, 4:46 am |
| OSPF Design question | May 10, 2006, 12:24 pm |
| VoIP Design Question | February 14, 2008, 4:14 pm |
| Wireless network design question | February 21, 2006, 3:15 pm |
| Question about core design with ospf | June 3, 2006, 11:53 pm |
| question on the internal IP address design | February 27, 2007, 12:40 pm |
| cisco 3560 layer 3 switch question | October 29, 2007, 10:14 am |
| Catalyst 3750G / Network design question | August 15, 2006, 12:44 am |
| Data & VoIP Subnet Schema (Design Question) | February 7, 2008, 5:31 pm |
| 2960 (layer 2) vs 3560 (layer 3) ...considerations? | September 15, 2006, 9:22 am |