View: 2781|Reply: 8
|
Subnet dah VLAN routing
[Copy link]
|
|
Sejahtera Atas Kamu
Aku bercadang nak buat subnet untuk setiap computer lab kat kolej aku. Aku dah cari dalam google tapi agak keliru dengan apa yang aku jumpa, tapi dari kasarnya aku rasa aku kena create subnet kat DHCP server dan kemudian kena set VLAN routing kat aku punya router.
So, aku nak mintak tolong korang, step yang patut aku buat...
Aku guna DHCP server MS Windows Server 2003 dan router Cisco Catalyst 3770
Bawah ni diagram network layout cadangan aku:
|
|
|
|
|
|
|
|
Reply #1 tegang_berbisa's post
ni, base on apa yang oobi tau sikit-sikitlah. looks like you're using subnet 172.18.200.0 for all devices for all labs. so, oobi tak nampak kenapa you perlu create vlan. unless you nak each lab to have their own separate acl on the router..
|
|
|
|
|
|
|
|
Sebab aku ada satu application open source yang memerlukan setiap lab mesti dalam subnet tertentu so boleh di kawal penggunaan internet.
On and Off penggunaan internet untuk student. |
|
|
|
|
|
|
|
Reply #3 tegang_berbisa's post
ahhh... means you want to control internet access for each lab at different time. kalau apa yang you tunjuk tu very similar dengan apa yang you plan nak buat, pada pendapat oobi, you don't need to touch dhcp server (since you'll assign each lab the same subnet). all you have to do is create different vlan kat router tu. then assign ip range for each vlan. you create 2 set of vlan. satu ada limited internet access. satu, restricted habis.
by the way, setahu oobi, catalyst is a switch. are you sure your 3770 is a router, not a switch?
|
|
|
|
|
|
|
|
Diagram tu plan nya.. sekarang ni semua lab dalam subnet yang sama... tu lah masalahnya plan jer tahu, buat tak tahu lagi.
Yep.. Catalyst 3750 is router... level 3 switch.. confirm 100% |
|
|
|
|
|
|
|
Oh, 3750. Patutlah oobi pening sikit sebab tak jumpa 3770.
Ini, apa yang oobi boleh fikirkanlah:-
For your Class B network:
Use different subnet with 62 hosts each (max). If you need more, you can always change the mask.
VLAN 1:-
Subnet: 172.16.201.0
Range: 172.16.201.1 - 172.16.201.62
Mask: 255.255.255.192
Broadcast: 172.16.201.63
VLAN 11:-
Subnet: 172.16.211.0
Range: 172.16.211.1 - 172.16.211.62
Mask: 255.255.255.192
Broadcast: 172.16.211.63
VLAN 12:-
Subnet: 172.16.212.0
Range: 172.16.212.1 - 172.16.212.62
Mask: 255.255.255.192
Broadcast: 172.16.212.63
VLAN 13:-
Subnet: 172.16.213.0
Range: 172.16.213.1 - 172.16.213.62
Mask: 255.255.255.192
Broadcast: 172.16.213.63
VLAN 14:-
Subnet: 172.16.214.0
Range: 172.16.214.1 - 172.16.214.62
Mask: 255.255.255.192
Broadcast: 172.16.214.63
Create 5 VLANs (oobi label as above because it's easy for me) - one wide open and 4 restricted for each assign VLAN (11-14). This way, you can open access to all VLANs, or just one device on a particular VLANs, or one whole VLAN and few devices from other VLANs, by just changing from appropriate VLANs to VLAN 1.
Assign an IP for each VLAN and then use IP Helper to request IP addresses for devices from your DHCP server (go to Cisco website on this - there are plenty of example and explanation).
|
|
|
|
|
|
|
|
by the way, your dhcp server pun kena set IP range accordingly (201, 211, 212, 213 and 214). ni, example ajer.
|
|
|
|
|
|
|
|
sonang ajho kalo albab subnet+vlan ni. bak makan kacang kate orang....eksen plan aku neh..ishhhh..masyallah...hehhe...
access list leh buat kat catalyst 3750 tuh.btol seperti dicadangkan..buat dua set VLAN......but...make sure subnet kna btol..supaya tidak membazir IP..
kalo pkai 3750..macam2 leh buat...kalo ko terus nak route ke internet trus pun bole...no need router sbbdie dah layer 3 switch..tapi kalo dah ada router..pakai je lah router.... |
|
|
|
|
|
|
|
Sori yer.. aku ni baru handle network ni.
So, 1st step yang aku kena buat? Configure kat DHCP server dulu ke? Then configure kat switch?
Ada tak step-by-step caranya?
Oobi n rambo.. korang ada yahoo messenger or MSN messenger tak? senang aku nak dapatkan support dan guide online dari korang. |
|
|
|
|
|
|
| |
|