This is all just an idea.. I'd like to ask an opinion and see what the group think or if you guys can ask more relevant questions about the idea..
I can create about 4-5 vlans. 3-4 diff departments and 1 subnet for servers. i have an ASA 4 Gb ports, right now the setup is happy. there isnt an immediate need to segment anything, but it would be nice.
Since i have 4 interfaces (on the ASA); i have each subnet on its own interface. if use 1 switch to create these vlans im thinking about and trunk a port on each vlan can i plug the trunk ports into these 4 interfaces on the router and more or less save using less switches oppossed to router on a stick (sub-interfaces).
Would a router on a stick introduce throughput issues?
What would be the benefit here? Right now all my LAN/server/additiona depts are all on the same LAN. This isnt a big concern for security, but it might be a good idea just to VLAN the servers. 1 of the servers is the main APP server. Everyone will need access to it. Wouldnt this defeat the purpose of setting up the VLANs?
Then there is a chat/jabber server; again they all need access.
So whats the true purpose or time when a VLAN should be used?
Hope I didnt go to fast or posted an unclear idea. Please ask for more info if so and I will provide.
Thanks!
Lenny